I was using the session with jwt enabled , i noticed one thing that the jwt expiry is default to 1 h...

doraig

07/24/2022, 5:51 AM

I was using the session with jwt enabled , i noticed one thing that the jwt expiry is default to 1 hr, in-spite of adding ACCESS_TOKEN_VALIDITY

rp_st

07/24/2022, 5:53 AM

Oh really! Can you please open an issue about this? May be a bug

doraig

07/24/2022, 6:09 AM

https://github.com/supertokens/supertokens-core/issues/482

rp_st

07/24/2022, 6:10 AM

Thank you. Will check it out asap.

doraig

07/24/2022, 7:00 AM

My bad i closed the issue since the config error was on my end i had two core service running 😳

rp_st

07/24/2022, 7:00 AM

ahh right! Sounds good.

doraig

07/24/2022, 7:02 AM

I did see that there is an off set of 30 seconds between the access token and jwt expiry, is this by design

rp_st

07/24/2022, 7:02 AM

yes. That is by design

rp_st

07/24/2022, 7:04 AM

Its there cause when you do

getAccessTokenPayload()

, that decides if a refresh is needed based on the access token's lifetime. There might be an edge case where right before the access token is about to expire, you call the function, and it doesn't refresh. The resulting JWT in that case, if used to send to another service, can hence be expired. So to sort of relax this edge case a bit, we added an extra 30 secs to the JWT expiry.

2 Views

Previous Next

SuperTokens.com

SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).