General
Security
- Session settings
- IP allowlist
- SSO
Control how long authenticated sessions remain active. Shorter session durations reduce risk if a device is lost, but require more frequent logins.
- Session timeout — Idle sessions are signed out after this period. Default is 7 days.
- Force re-authentication — Require password or SSO confirmation before accessing sensitive settings.
Notification defaults
These settings apply to all new members. Existing members retain their personal notification preferences unless you reset them.- Email digests — Daily or weekly summaries of activity in projects the member belongs to.
- Mention alerts — Immediate email when a member is @-mentioned in a comment or task.
- Project updates — Notify members when a project they belong to changes status.
