fix: DEV-3397: Refactored setting of 'last_login' to reduce repetition (#3185)

* fix: DEV-3397: Added session expiration settings and conditions based on last login and last activity. Also made persistent session optional on login.

* fix: DEV-3397: Adding option to ignore certain URLs for inactivity timeout reset

* fix: DEV-3397: setting last_login to session on user registration

* fix: DEV-3397: refactored setting of 'last_login' to reduce repetition

* fix: DEV-3397: added missing import

* Update base.py

* Add toggle for middleware

* Add flag

* fix: DEV-3397: Adding option to have a query string be in NOT_USER_ACTIVITY_PATHS

* fix: DEV-3397: ensuring that close browser on session works with max time between activity

Co-authored-by: Wesley Lima <wesley@heartex.com>
Co-authored-by: Max Tkachenko <makseq@gmail.com>