From 02e9aa1ac412ec0d2ecf7ce26860ca8233219e62 Mon Sep 17 00:00:00 2001
From: igor <mino@tpsoft.org>
Date: Mon, 16 Feb 2026 07:41:49 +0100
Subject: [PATCH] token validity increase from 1 hour to 7 days

---
 backend/src/Models/Users.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/backend/src/Models/Users.php b/backend/src/Models/Users.php
index d9c9ea9..5928e03 100644
--- a/backend/src/Models/Users.php
+++ b/backend/src/Models/Users.php
@@ -105,7 +105,7 @@ class Users extends \TPsoft\DBmodel\DBmodel {
 		return password_verify($password, $password_hash);
 	}
 
-	public function generateToken(int $user_id, int $ttl_seconds = 3600): string {
+	public function generateToken(int $user_id, int $ttl_seconds = 604800): string {
 		if ($user_id <= 0) {
 			throw new \Exception('Invalid user_id');
 		}
@@ -152,7 +152,7 @@ class Users extends \TPsoft\DBmodel\DBmodel {
 		if (!hash_equals($stored_token, $token)) {
 			return false;
 		}
-		$refresh_expires = date('Y-m-d H:i:s', time() + 3600);
+		$refresh_expires = date('Y-m-d H:i:s', time() + 604800); // 7 days
 		$updated = $this->user($user_id, array(
 			'token_expires' => $refresh_expires
 		));