Users can access environment without passing the 2fa after automatic logout after 10h on Production environment.
Such behavior was noticed in the following scenario:
- after several days of idling user goes directly to the Staging environment via link;
- user is logging in to the Forest Admin site;
- dropdown with environments is displayed, where Production environment is selected;
- after redirect and login the 2fa is not required to access environment.
- Two-factor authentication is enabled on Staging and Production environment
- Project Name: Leadtime App