How Session Timeout and Login Work

Source: autosoft-workshop/app/controllers/application_controller.rb, mobile app

Web: session expires after configurable minutes, but last_access only updates if >3 minutes passed
Mobile: session auto-renews using stored credentials, but network loss = immediate logout
Subscription status check blocks non-admin users if status is not active/trialing/pending_cancellation
Login tries AU/US/UK servers sequentially — first match wins

"Got logged out unexpectedly" → rapid requests didn't update last_access (3-min gap)
"Mobile keeps logging me out" → WiFi drops triggering immediate logout
"Can't log in" → subscription status is not active/trialing