From b93496fd999df83c838ee450b43c95a8888dd02d Mon Sep 17 00:00:00 2001
From: Johannes Batzill <johannes.batzill@harness.io>
Date: Fri, 15 Sep 2023 21:24:27 +0000
Subject: [PATCH] [AUTH] Increase Login/Register Token to 30 Day Lifetime
 (#510)

---
 internal/token/token.go | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/internal/token/token.go b/internal/token/token.go
index 8c63eb29e..afb0b86ad 100644
--- a/internal/token/token.go
+++ b/internal/token/token.go
@@ -18,7 +18,9 @@ import (
 )
 
 const (
-	userTokenLifeTime time.Duration = 24 * time.Hour // 1 day.
+	// userSessionTokenLifeTime is the duration a login / register token is valid.
+	// NOTE: Users can list / delete session tokens via rest API if they want to cleanup earlier.
+	userSessionTokenLifeTime time.Duration = 30 * 24 * time.Hour // 30 days.
 )
 
 func CreateUserSession(
@@ -35,7 +37,7 @@ func CreateUserSession(
 		principal,
 		principal,
 		uid,
-		ptr.Duration(userTokenLifeTime),
+		ptr.Duration(userSessionTokenLifeTime),
 	)
 }