Skip to content

Allow to disable expiration time claim #106

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Dec 14, 2017
Merged

Allow to disable expiration time claim #106

merged 2 commits into from
Dec 14, 2017

Conversation

@beenje
Copy link
Contributor

@beenje beenje commented Dec 12, 2017

Setting expires_delta to timedelta(0) removes the "exp" claim
and creates a token that never expires.

Fix issue #105

@beenje
Allow to disable expiration time claim
bfb1bc0 
Setting expires_delta to timedelta(0) removes the "exp" claim
and creates a token that never expires.

Fix issue vimalloc#105
@coveralls
Copy link

coveralls commented Dec 12, 2017
edited
Loading

Coverage Status

Coverage remained the same at 100.0% when pulling bfb1bc0 on beenje:master into 29b3f5a on vimalloc:master.

vimalloc
vimalloc requested changes Dec 13, 2017
View reviewed changes
docs/options.rst Outdated
``JWT_REFRESH_TOKEN_EXPIRES`` How long a refresh token should live before it expires. This
takes a ``datetime.timedelta``, and defaults to 30 days
takes a ``datetime.timedelta``, and defaults to 30 days.
Can be set to ``datetime.timedelta(0)`` to disable expiration.
Copy link
Owner

@vimalloc vimalloc Dec 13, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wonder if it would be more intuitive to set the expires delta to False instead of datetime.timedelta(0). I think that may be more clear about how it is used and the purpose of it, if someone looking at this out in the wild somewhere.

I think it would only need to be updated in the documentation, because the create_token methods explicitly check for if expires delta is None: https://github.com/vimalloc/flask-jwt-extended/blob/master/flask_jwt_extended/jwt_manager.py#L375

Copy link
Contributor Author

@beenje beenje Dec 13, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes that might be more intuitive.
JWT_ACCESS_TOKEN_EXPIRES currently must be a datetime.timedelta: https://github.com/vimalloc/flask-jwt-extended/blob/master/flask_jwt_extended/config.py#L154
So there is some code impact, but that should be minor.

@beenje
Use False to disable expiration
413d17d 
This is more intuitive than timedelta(0)
@coveralls
Copy link

coveralls commented Dec 13, 2017
edited
Loading

Coverage Status

Coverage remained the same at 100.0% when pulling 0f03c88 on beenje:master into 29b3f5a on vimalloc:master.

@coveralls
Copy link

coveralls commented Dec 13, 2017
edited
Loading

Coverage Status

Coverage remained the same at 100.0% when pulling 413d17d on beenje:master into 29b3f5a on vimalloc:master.

@vimalloc
Copy link
Owner

vimalloc commented Dec 14, 2017

This looks great. Thanks for contributing! 👍

@vimalloc vimalloc merged commit 560fbf6 into vimalloc:master Dec 14, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vimalloc vimalloc vimalloc approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@beenje @coveralls @vimalloc