RosterIn commented on issue #6912: [AIRFLOW-6352] security - ui - add login timeout URL: https://github.com/apache/airflow/pull/6912#issuecomment-569252689 I think it can become handy. @potiuk Security isn't always about the "outside" world. It's also for inner one. Companies may use more than one instance of airflow. For example I have airflow install unique for HR data - this is extremely sensitive. I would welcome such feature for this instance but I wouldn't welcome it for my other airflow instances. So I think this shouldn't be enforced for everyone. This can be optional feature that users can set by themselves from `airflow.cfg` I also recommend not to hard code 60 min. Let users decide what they want. It can be in the same setting: `force_log_out_after = 60` if set this will timeout the session and also use the number to determine the time
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services