The WEBUI does Authentication (SPNEGO/Custom) and then drops a cookie.
Once the cookie expires, the webui displays a page saying that "authentication token expired". The user has to refresh the page to get authenticated again. This page can be avoided and the user can authenticated without showing such a page to the user.
Also the when the cookie expires, a warning is logged. But there is no need to log this as this is not of any significance.