increase JWT token lifetime

2019-12-06 13:15:27 +03:00 · 2019-12-06 13:15:27 +03:00 · c272dc1255
commit c272dc1255
parent 7635eafb09
1 changed files with 5 additions and 5 deletions
--- a/project/settings/base.py
+++ b/project/settings/base.py
@ -414,10 +414,10 @@ SORL_THUMBNAIL_ALIASES = {
 SIMPLE_JWT = {
    # Increase access token lifetime b.c. front-end dev's cant send multiple
    # requests to API in one HTTP request.
-    'ACCESS_TOKEN_LIFETIME': timedelta(days=30),
-    'ACCESS_TOKEN_LIFETIME_SECONDS': 21600,  # 6 hours in seconds
-    'REFRESH_TOKEN_LIFETIME': timedelta(days=30),
-    'REFRESH_TOKEN_LIFETIME_SECONDS': 2592000,  # 30 days in seconds
+    'ACCESS_TOKEN_LIFETIME': timedelta(days=182),
+    'ACCESS_TOKEN_LIFETIME_SECONDS': 15770000,  # 6 months
+    'REFRESH_TOKEN_LIFETIME': timedelta(days=182),
+    'REFRESH_TOKEN_LIFETIME_SECONDS': 15770000,  # 6 months
    'ROTATE_REFRESH_TOKENS': True,
    'BLACKLIST_AFTER_ROTATION': True,

@ -453,7 +453,7 @@ NOTIFICATION_PASSWORD_TEMPLATE = 'account/password_change_email.html'


 # COOKIES
-COOKIES_MAX_AGE = 2628000  # 30 days
+COOKIES_MAX_AGE = 15730000  # 6 months
 SESSION_COOKIE_SAMESITE = None