forgejo.dev/forgejo
2
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-09-08 00:03:28 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request '[FEAT] Enable INVALIDATE_REFRESH_TOKENS' (#4633) from gusted/sec-oauth into forgejo

Browse source 
Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/4633
Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>
This commit is contained in:
Earl Warren 2024-07-23 20:45:22 +00:00
commit 14d079a1eb
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
modules/setting/oauth2.go
View file

@ -104,7 +104,7 @@ var OAuth2 = struct {
Enabled: true,
AccessTokenExpirationTime: 3600,
RefreshTokenExpirationTime: 730,
InvalidateRefreshTokens: false,
InvalidateRefreshTokens: true,
JWTSigningAlgorithm: "RS256",
JWTSigningPrivateKeyFile: "jwt/private.pem",
MaxTokenLength: math.MaxInt16,