By love of god - I can’t understand what is the difference between “SSO Session Idle” and “SSO Session Max”!
this is what I found from googling:
“SSO Session Idle Specify the SSO Session Idle timeout. By default, the value is set to 30 minutes. SSO Session Max Specify the maximum time before a user session is expired and invalidated. By default, the value is set to 10 hours”
In our scenario, we are doing a user login using the Admin Rest API.
and once the access token is explored we use the refresh token to create a new one.
from what I noticed that once I do that the refresh token expiration is rest to 30 minutes again.
so what is this 10 hours parameter?
our goal is that if a user is idle for more than 1 hour - he will need to do login again.
what is the best way to achieve this ?
thank!