Set default JWT token expiration to 12 hours

This allows a client to login only once a day. We might want to decrease that and look into refresh token. But this looks overkill for our use case.

Set default JWT token expiration to 12 hours
This allows a client to login only once a day. We might want to decrease that and look into refresh token. But this looks overkill for our use case.
84175421 · Benjamin Bertrand · 738fd371 · 84175421
Commit 84175421 authored 7 years ago by Benjamin Bertrand
--- a/app/settings.py
+++ b/app/settings.py
@@ -10,6 +10,7 @@ This module implements the app default settings.

 """
 import os
+from datetime import timedelta

 SQLALCHEMY_DATABASE_URI = 'postgresql://ics:icspwd@postgres/inventory_db'
 SQLALCHEMY_TRACK_MODIFICATIONS = False
@@ -20,6 +21,8 @@ MAIL_SERVER = 'mail.esss.lu.se'
 ADMIN_EMAILS = ['admin@example.com']
 EMAIL_SENDER = 'inventory@esss.se'

+JWT_ACCESS_TOKEN_EXPIRES = timedelta(hours=12)
+
 LDAP_HOST = 'esss.lu.se'
 LDAP_BASE_DN = 'DC=esss,DC=lu,DC=se'
 LDAP_USER_DN = 'OU=ESS Users'