> I have a nice set of front windows, but that means a risk of someone breaking through them. I accept that risk for the windows - the extra light and visibility is well worth it, and the windows are not the only way in. Compare to short sessions.
Okay. I will compare using house to short sessions.
Short sessions is like having house with every doors having a lock and I need to use the keys to get into different room, if I stay in one room for too long, including the shitter. I also need to use the keys to open windows and the oven. And developer going "well, you shat yourself ? That's your fault, should've had keys on you at all times".
That's what short sessions are. Delusional security clowns ignoring usability. It's less than security theatre, it's security circus.
Requiring re-auth to pay some money or delete something important is reasonable stance.
Requiring re-auth few times a day just to browse data in the app is not,
Okay. I will compare using house to short sessions.
Short sessions is like having house with every doors having a lock and I need to use the keys to get into different room, if I stay in one room for too long, including the shitter. I also need to use the keys to open windows and the oven. And developer going "well, you shat yourself ? That's your fault, should've had keys on you at all times".
That's what short sessions are. Delusional security clowns ignoring usability. It's less than security theatre, it's security circus.
Requiring re-auth to pay some money or delete something important is reasonable stance.
Requiring re-auth few times a day just to browse data in the app is not,