mirror of
https://github.com/aykhans/slash-e.git
synced 2025-04-19 21:46:19 +00:00
25 lines
1.1 KiB
Go
25 lines
1.1 KiB
Go
package auth
|
|
|
|
import (
|
|
"time"
|
|
)
|
|
|
|
const (
|
|
// issuer is the issuer of the jwt token.
|
|
Issuer = "slash"
|
|
// Signing key section. For now, this is only used for signing, not for verifying since we only
|
|
// have 1 version. But it will be used to maintain backward compatibility if we change the signing mechanism.
|
|
KeyID = "v1"
|
|
// AccessTokenAudienceName is the audience name of the access token.
|
|
AccessTokenAudienceName = "user.access-token"
|
|
AccessTokenDuration = 7 * 24 * time.Hour
|
|
|
|
// CookieExpDuration expires slightly earlier than the jwt expiration. Client would be logged out if the user
|
|
// cookie expires, thus the client would always logout first before attempting to make a request with the expired jwt.
|
|
// Suppose we have a valid refresh token, we will refresh the token in cases:
|
|
// 1. The access token has already expired, we refresh the token so that the ongoing request can pass through.
|
|
CookieExpDuration = AccessTokenDuration - 1*time.Minute
|
|
// AccessTokenCookieName is the cookie name of access token.
|
|
AccessTokenCookieName = "slash.access-token"
|
|
)
|