Nemcio/SCM-Manager
1
0
Fork 0
mirror of https://github.com/scm-manager/scm-manager.git synced 2025-11-15 17:56:17 +01:00
Code Issues Packages Projects Releases Activity

set 10 hours for token max age

Browse Source
This commit is contained in:
Sebastian Sdorra
2015-03-21 15:58:31 +01:00
parent debcacb61f
commit 3525346adb
2 changed files with 13 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
scm-webapp/src/main/java/sonia/scm/security/BearerTokenGenerator.java
View File

@@ -39,6 +39,8 @@ import io.jsonwebtoken.SignatureAlgorithm;
import sonia.scm.user.User;
import static com.google.common.base.Preconditions.*;
import java.util.Date;
import java.util.concurrent.TimeUnit;
//~--- JDK imports ------------------------------------------------------------
@@ -83,14 +85,18 @@ public final class BearerTokenGenerator
checkNotNull(user, "user is required");
SecureKey key = keyResolver.getSecureKey(user.getName());
// TODO add expiration date
Date now = new Date();
// TODO: should be configurable
long expiration = TimeUnit.MILLISECONDS.convert(10, TimeUnit.HOURS);
//J-
return Jwts.builder()
.setSubject(user.getName())
.setId(keyGenerator.createKey())
.signWith(SignatureAlgorithm.HS256, key.getBytes())
.setIssuedAt(now)
.setExpiration(new Date(now.getTime() + expiration))
.compact();
//J+
}