Extension of Password Token Expiry Time - UAA Version 4.7.0 #2398
Replies: 1 comment 1 reply
-
|
Hi @kguptaumesh, you use a custom UAA or a fork? If you ask to extend the time with a configuration option, then yes this is the calculation for expiry of the password reset. If you have a proposal for a configuration option, then please open a PR to provide you changes regards |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
Thank you @strehle for your response. Yeah if it is configurable , this should serve the purpose. Regards, |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi All,
Currently, we are working to extend the password token expiry time (in our custom code) from 30 minutes to 1 hour.
However, however when token is used after 30 minutes to set the password, it fails in UAA.
endpoint used - POST http://localhost:8080/uaaz/password_change HTTP/1.1
Version used - https://docs.cloudfoundry.org/api/uaa/version/4.7.0/
When I was exploring the document, I have located a hardcoded proeprty in UaaResetPasswordService class.
public static final int PASSWORD_RESET_LIFETIME = 30 * 60 * 1000;
Hence, I am curious to know if this is the value which is stopping me to extend the expiry time. I am hopeful to have a good discussion around this and extract an answer of my query.
Screen shot of the UAA hard coded value.
Regards,
Umesh
Beta Was this translation helpful? Give feedback.
All reactions