θΏ™ζ˜―indexlocζδΎ›ηš„ζœεŠ‘οΌŒδΈθ¦θΎ“ε…₯任何密码
Skip to content

Add custom JWT TTL #4234

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Aug 1, 2025
Merged

Add custom JWT TTL #4234

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions docker/.env.example
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@ GID='1000'
# SIG_KEY='passphrase' # Please generate random string at least 32 chars long.
# SIG_SALT='salt' # Please generate random string at least 32 chars long.
# JWT_SECRET="my-random-string-for-seeding" # Only needed if AUTH_TOKEN is set. Please generate random string at least 12 chars long.
# JWT_EXPIRY="30d" # (optional) https://docs.anythingllm.com/configuration#custom-ttl-for-sessions

###########################################
######## LLM API SElECTION ################
Expand Down
1 change: 1 addition & 0 deletions server/.env.example
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
SERVER_PORT=3001
JWT_SECRET="my-random-string-for-seeding" # Please generate random string at least 12 chars long.
# JWT_EXPIRY="30d" # (optional) https://docs.anythingllm.com/configuration#custom-ttl-for-sessions
SIG_KEY='passphrase' # Please generate random string at least 32 chars long.
SIG_SALT='salt' # Please generate random string at least 32 chars long.

Expand Down
21 changes: 9 additions & 12 deletions server/endpoints/system.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -202,18 +202,18 @@ function systemEndpoints(app) {
existingUser?.id
);

// Check if the user has seen the recovery codes
// Generate a session token for the user then check if they have seen the recovery codes
// and if not, generate recovery codes and return them to the frontend.
const sessionToken = makeJWT(
{ id: existingUser.id, username: existingUser.username },
process.env.JWT_EXPIRY
);
if (!existingUser.seen_recovery_codes) {
const plainTextCodes = await generateRecoveryCodes(existingUser.id);

// Return recovery codes to frontend
response.status(200).json({
valid: true,
user: User.filterFields(existingUser),
token: makeJWT(
{ id: existingUser.id, username: existingUser.username },
"30d"
),
token: sessionToken,
message: null,
recoveryCodes: plainTextCodes,
});
Expand All @@ -223,10 +223,7 @@ function systemEndpoints(app) {
response.status(200).json({
valid: true,
user: User.filterFields(existingUser),
token: makeJWT(
{ id: existingUser.id, username: existingUser.username },
"30d"
),
token: sessionToken,
message: null,
});
return;
Expand Down Expand Up @@ -259,7 +256,7 @@ function systemEndpoints(app) {
valid: true,
token: makeJWT(
{ p: new EncryptionManager().encrypt(password) },
"30d"
process.env.JWT_EXPIRY
),
message: null,
});
Expand Down
2 changes: 1 addition & 1 deletion server/models/temporaryAuthToken.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -86,7 +86,7 @@ const TemporaryAuthToken = {
// Create a new session token for the user valid for 30 days
const sessionToken = makeJWT(
{ id: token.user.id, username: token.user.username },
"30d"
process.env.JWT_EXPIRY
);

return { sessionToken, token, error: null };
Expand Down
2 changes: 2 additions & 0 deletions server/utils/helpers/updateENV.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1094,6 +1094,8 @@ function dumpENV() {
...Object.values(KEY_MAPPING).map((values) => values.envKey),
// Manually Add Keys here which are not already defined in KEY_MAPPING
// and are either managed or manually set ENV key:values.
"JWT_EXPIRY",

"STORAGE_DIR",
"SERVER_PORT",
// For persistent data encryption
Expand Down