Website token timeout?

For a simple website application which is using Auth0 only for user authentication (email/pass), is token refresh required? For the application, are there negative consequences from token timeout?

Thank you.