How can set no expiration for Auth? | Payload | Page 1

echo steeple Jul 13, 2023, 2:12 AM

#

Hi, I read the official doc, and I saw that I can setting up a tokenExpiration field, but I need that the system never expires.

open creek Jul 13, 2023, 3:40 AM

#

Would an api-key work better for you? Cookies have a hard limit of 400 days mandated by the browser. You could enable api-keys on your user collection and then use an api-key authenticate with infinitely. Here’s some more info about them: https://payloadcms.com/docs/authentication/config#api-keys

Payload CMS

Authentication Config | Documentation | Payload CMS

Payload is a headless CMS and application framework built with TypeScript, Node.js, React and MongoDB

echo steeple Jul 13, 2023, 3:15 PM

#

open creek Would an api-key work better for you? Cookies have a hard limit of 400 days mand...

There's not exist someway to use jwt?

open creek Jul 13, 2023, 3:16 PM

#

You can also use JWT yeah!

#

Authorization: JWT your-token-here

echo steeple Jul 19, 2023, 5:30 PM

#

open creek Authorization: JWT your-token-here

Yes but using JWT passing by Authorization, keeps expiring

echo steeple Jul 22, 2023, 6:46 PM

#

open creek Authorization: JWT your-token-here

There's exist some way to avoid JWT expiration?

silent cedar Jul 25, 2023, 4:56 PM

#

echo steeple There's exist some way to avoid JWT expiration?

Not really, the intention of JWTs and this kind of "temporary token authorisation" is the fact that they expire, what you're really looking for is the API key linked above, that is also going to have the behaviour you want of not expiring.
Any other solution to get JWTs to behave like an API key would just be hacky and not recommended

#How can set no expiration for Auth?