From 7d362ada87eec9853724f9378660cbc9ea8ba7be Mon Sep 17 00:00:00 2001
From: Schneider Roland <roland.schneider@extern.a1.at>
Date: Sat, 20 May 2023 22:27:27 +0200
Subject: [PATCH] mobile api jwt token never expires

---
 mobileapi/controllers/LoginController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mobileapi/controllers/LoginController.php b/mobileapi/controllers/LoginController.php
index a615d8e..5fd8039 100644
--- a/mobileapi/controllers/LoginController.php
+++ b/mobileapi/controllers/LoginController.php
@@ -47,7 +47,7 @@ class LoginController extends RestController
             ->permittedFor('customer')// Configures the audience (aud claim)
             ->identifiedBy('A989C57D19E2AF756BA9585AC4CFAF7974AE3D2BCA7CCA7307B39AB28CC7C2C8', true)// Configures the id (jti claim), replicating as a header item
             ->issuedAt($time)// Configures the time that the token was issue (iat claim)
-            ->expiresAt($time + $validFor)// Configures the expiration time of the token (exp claim)
+//            ->expiresAt($time + $validFor)// Configures the expiration time of the token (exp claim)
             ->withClaim('uid', $form->getMobileDevice()->getId())// Configures a new claim, called "uid"
             ->withClaim('cardId', $form->getMobileDevice()->card->number)// Configures a new claim, called "uid"
             ->getToken($signer, $key); // Retrieves the generated token