Two different token expiries in a single application

Question

Two different token expiries in a single application

7ail opened this issue 6 years ago · comments

Han Liang Alvin See commented 6 years ago

Hi,

I just wanted to know if this gem handles multiple different expiry times for tokens.

In my case, we have a web portal and apps. We want to have the jwt token to expire in 1hr for the web portal but have it expiry in 30 days for the app.

From what I can gather, it seems that the config file only supports either or but not both. Some help/insight will be much appreciated

Regards
7ail

Vinney Cavallo · Answer 1 · Fri Jul 26 2019 01:05:44 GMT+0800 (China Standard Time)

hey @7ail did you ever end up figuring this out?

Han Liang Alvin See · Answer 2 · Fri Jul 26 2019 06:23:29 GMT+0800 (China Standard Time)

@vcavallo yes we did, however it felt rather hacky. We decided to extend the knock gem and override the jwt token generation function to cater for our use case.

We left the 1 hour as a default value through the config file and whenever the jwt is generated through the mobile controllers, we utilise the overwritten jwt token generation function instead

Arnaud Mesureur · Answer 3 · Fri Dec 06 2019 05:56:09 GMT+0800 (China Standard Time)

Thank you. Closing this issue in favour of #241 which provide some extra details. Will consider supporting this in the future.