For example, after 30 minutes, need to log in again
Check the site setting maximum_session_age
I’d be interested to hear your reasoning for this request @Aaron_Pang 
It feels fairly user hostile to require logins after such a short time of inactivity. There can be valid reasons, but most users own their devices, so the security benefit of such a policy is usually fairly low.