JWT token not expiring in provided expiryTime (1 day) #135
Labels
bug
Something isn't working
help wanted
Extra attention is needed
moderate
This issue is moderately difficult
Describe the bug 馃悰
In auth.service.js, the JWT token is issued and it's expiry is set to be 1 day, but even after a day, the person with the old token is still able to modify profile data.
To Reproduce 馃攳
Steps to reproduce the behavior:
Expected behaviour 馃悵
Instead, one must not be able to modify account data, even after JWT token should have expired
Desktop (please complete the following information): 馃捇
Additional context 馃摑
Related code where we create the JWT token is in:
pbchess/server/src/services/auth.service.js
Lines 28 to 43 in 42ccc48
The text was updated successfully, but these errors were encountered: