Yii

Why is the password kept for one day on yii2?

Hello.
-
Right off the bat I’ll say that we are not talking about sessions , but about the correctness of the password. For the first time, I encountered the fact that you register on the Yii2 framework, confirm your e-mail (if there is such a function), and everything - entering your personal account, account, and so on - turns out. A day passes, the password is not valid , it must be restored by a new one. If you don’t go out, after a day the account does not go anywhere, for the second, too, and for the third and fourth. But it is worth leaving, and a day has passed, you will have to change the password through recovery. That is, the session is held until you click, what are you called "online", why the password becomes invalid in a day - I don’t understand. I have not seen this before. Where is the stumbling block?
PS I noticed this on the local server, where only I have access, and on the combat server, this phenomenon also occurred.