Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Access token expiration #17864

Closed
mscherer opened this issue Nov 30, 2021 · 2 comments
Closed

Access token expiration #17864

mscherer opened this issue Nov 30, 2021 · 2 comments
Labels
issue/duplicate The issue has already been reported.

Comments

@mscherer
Copy link
Contributor

Feature Description

Gitea access token currently are not expiring. It would be nice, for security, if people had the option to make them expire after a while (so a leaked token can't be reused). I do not think it would be good by default, but giving the option to people would be good.

I am willing to give a try at coding the feature if people think that would be valuable.

Screenshots

No response
@zeripath
Copy link
Contributor

We need to move to using JWT tokens.

If we get scopes sorted - which should be possible with some work then JWT tokens would be a consequence of this.

@mscherer
Copy link
Contributor Author

So related to #4793 (I should have searched harder)

@lafriks lafriks added the issue/duplicate The issue has already been reported. label Nov 30, 2021
@lafriks lafriks closed this as completed Nov 30, 2021
@go-gitea go-gitea locked and limited conversation to collaborators Apr 28, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
issue/duplicate The issue has already been reported.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lafriks @mscherer @zeripath