Question

When a user is inactive for more than 30 mins, what should happen?

1) The user should be automatically logged out
2) The user should receive a warning message
3) The user should be redirected to a different page
4) The user should be prompted to confirm their activity

Answer 1

The best action when a user is inactive for more than 30 minutes depends on application security and user experience needs, options include automatic logout. The correct option is A.

Step-by-step explanation:

When a user is inactive for more than 30 minutes, the best course of action can vary depending on the context of the application and its security requirements. There are several options, including:

• Automatically logging out the user to protect their account from unauthorized access.
• Showing a warning message to inform the user about their inactivity before any action is taken.
• Redirecting the user to a different page, such as the homepage or a screen saver.
• Prompting the user to confirm their activity by presenting a prompt asking them to indicate if they are still there.

Security best practices often recommend automatically logging out users after a period of inactivity to safeguard sensitive information. However, providing a warning message or a prompt before logging out can improve user experience. The specific choice should align with the user needs and security protocols of the service.