Each time you log in to Bugcrowd from a unique device, a new active session is created for your account. Sessions track your IP address, operating system, and browser type, and they allow you to remain logged into your account indefinitely. By continuing to keep your session active, you can have the time you need to perform and complete your work without interruption. In short: you won't have to keep logging back in to Crowdcontrol due to inactivity timeouts. You'll be able to focus on researching and building out your submissions.
For security purposes, there are a few areas in Bugcrowd that enforce reauthentication after two hours. For example, if you want to modify your account or security settings, you'll need to reauthenticate.
Otherwise, if you're not trying to access or modify sensitive data, you will be able to remain logged in to Bugcrowd indefinitely.
To see a list of all active sessions for your account, go to your "Account" settings and navigate to the "Security" tab. To quickly get to this area, you can go here. You'll be able to see your current session and revoke any active session you want.
You can log out of a session by revoking it. To revoke a session, go to your "Account" settings and navigate to the "Security" tab. To quickly get to this area, you can go here. You'll be able to see a list of all active sessions. Revoke the session you no longer want to keep active.
If you are ever concerned that someone has gained unauthorized access to your profile, you can review a log of important security events in your account. To view the log, go to your "Account" settings and navigate to the "Security" tab, then click "Events". To quickly get to this area, you can go here.