Expire token supported?

[ksenechal]

Is the token expirable?

I didn't see any configuration to achieve this. Is there a way to do it with simple_token_auth?

Thanks in advance!

Kevin

[gonzalo-bulnes]

Hi @ksenechal,

There is no specific expiration option. However, you can renew the users authentication tokens quickly by (re)setting the users authentication_token to nil. Once that done, a new token will be automatically generated when saving the record.

[charlesmastin]

Hello @gonzalo-bulnes,

Was there an intentional decision to omit lifespan attributes? I suppose I can override ensure_authentication_token and authenticate_entity_from_token to support per token lifespans. Thanks for the great work.

[gonzalo-bulnes]

No, there is no intention to prevent expiration mecanisms to be used, but none of them has been implemented at this point. By the way, I would be pleased to follow and support your progress in that way if you wanted to share it; that would be -IMHO- a great option to add to Simple Token Authentication. Keep me updated!

[charlesmastin]

Thanks for getting back. I'm a python guy knee deep in a ruby project so I wouldn't expect much, but I'll keep you posted, especially if it has value for the gem. Thanks for your positive attitude and support. Now go enjoy your vacation (so I read on another issue).

[feliperaul]

@gonzalo-bulnes , could you please provide example code of where/when, exactly, I would set authentication_token to nil after a login to expire it ?

[gonzalo-bulnes]

@feliperaul See #199 I did provide you an example there.