Yes. Actually, as per the security test team, we need 5 minutes. A few days ago I upgraded the Moodle version from 3.8 to 3.11 I was testing for the same.
Once I logged in to the application immediately I get a session time-out popup.
when I remove it together and saved the page, I am getting auto(default) digits in that text box. And now the popup is not coming continuously, but when I am updating the time from 8 hours to 5 minutes then the popup is continuously coming after 1 minute.
You realise that if somebody is typing into a form and they stop to think for a few minutes they will lose everything? I have 8 hours and we're thinking of making it longer (days).
My point is that probably nobody has ever tested it with these very low settings.
Hi, I have a similar problem. My timeout session is 2 hours, but when I log in with a Google Account in Oauth2, session logout appears after few minutes (10/15 mins) even if I'm using any site pages. Could you help me? Thanks a lot.