question on Oak login Idle timeout setting (org.apache.jackrabbit.oak.security.authentication.token.TokenConfigurationImpl) and protected+published pages.
scenario: There is a public page that's behind a login. We're not using the built-in SAML authentication ("Adobe Granite SAML 2.0 Authentication Handler" - com.adobe.granite.auth.saml.SamlAuthenticationHandler) that's provided by AEM publisher.
---
I had a look at the cookies and login-token cookie is not present. Would the Oak login idle timeout still work?
