Hi @gavin.liu
Welcome to the Auth0 Community!
I’ve checked our documentation regarding session management. If your main goal is to force the user to log in after the 30 minutes mark, Require Log in after in the Log in session Management setting will do the work. But having other pieces of flow that cover the same requirement reduces the chance of failure due to untested changes, etc.
Require log in after Timeframe (in minutes) after which a user will be required to log in again, regardless of their activity. Will be superseded by system limits if over 43,200 minutes (30 days) for Essential or Professional or 525,600 minutes (365 days) for enterprise plans.
Thanks
Dawid