OHDSI Home | Forums | Wiki | Github

Guidance on Security token expiration

In Atlas, does anyone have experience with utilizing a lower security.token.expiration than the default of 12 hours (43200 seconds)?

From what I can tell, the token times out if the time between user initiated WebAPI calls exceeds that threshold, but of course any jobs initiated continue even when this occurs.

Has anyone found a sweet spot balancing usability and security?