I have a SPA. I believe my application’s session is expired after a couple of hours of idleness. When the user tries to log back in, their credentials are cached and they login without having to retype their password.
I would like auth0 to request the user enter their password again after 24hrs. How do I do that?
I tried setting the API’s “Total Expiration (Seconds)” and “Token Expiration for Browser Flows (Seconds)” to 86400 (1 day), but the login is still cached after 1 day.
What setting should I be changing?
Thanks in advance