From 1a990bfa2bee41f0fb332a070cea1b32089e1912 Mon Sep 17 00:00:00 2001
From: alfredeen <johan.alfredeen@gmail.com>
Date: Tue, 19 Mar 2024 16:14:27 +0100
Subject: [PATCH] Added new Django configuration setting for expiration of
 authentication tokens.

---
 scaleout/stackn/templates/studio-settings-configmap.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/scaleout/stackn/templates/studio-settings-configmap.yaml b/scaleout/stackn/templates/studio-settings-configmap.yaml
index f4a0f00..06066c5 100644
--- a/scaleout/stackn/templates/studio-settings-configmap.yaml
+++ b/scaleout/stackn/templates/studio-settings-configmap.yaml
@@ -227,13 +227,16 @@ data:
     }
 
     # Session settings for managing automatic login expiration.
-    # The age of session cookies, in seconds. Set to 1 day = 86400 seconds:
+    # The age of session cookies, in seconds. Default set to 1 day = 86400 seconds:
     SESSION_COOKIE_AGE = {{ .Values.studio.session_cookie_age | default 86400 }}
     # Whether to save the session data on every request. For sliding expiration:
     SESSION_SAVE_EVERY_REQUEST = True
     # Whether to expire the session when the user closes their browser:
     SESSION_EXPIRE_AT_BROWSER_CLOSE = False
 
+    # The expiration duration in seconds for authentication tokens. Default set to 1 day:
+    AUTH_TOKEN_EXPIRATION = {{ .Values.studio.auth_token_expiration | default 86400 }}
+
     # Settings for the Django Axes brute force login protection
     # Number of allowed login failures before action is taken
     AXES_FAILURE_LIMIT = {{ .Values.studio.axes_failure_limit | default 10 }}