Single post in Two-Factor Authentication
Forum Index > Core > Announcements > News Archive > Two-Factor Authentication >
I don't think it's a terribly good idea to introduce a feature to increase security, and then go on to add a feature that decreases it.
The current session expiry is 24 hours of inactivity, and that seems fine.