Personal Access Token expiration can't be set and it fails to check the Y2K38 bug.

[fgoni]

Using the Passport facade to set the Expiration time for Authorization Code and Password Grant you can avoid the dreaded Y2K38 bug but Personal Access Tokens are hardcoded to last another hundred years from now, which puts it well beyond 2038.

This is a problem because on most Windows environments the tokens will never match and never authenticate the user.

The only way to bypass this is to modify the vendor files and do it every time Passport is upgraded.

[nugrahawahyu]

Yeah I always get negative value of expires_in ( -1477799197 ) and the only way to fix it is to modify the vendor files.

[zsimple]

Yes, I just wasted one day to find this problem, It happend only happend on 32bit php.

For now, maybe we need modify passport/src/Passport.php @ 190 line, new DateInterval('P100Y') --> new DateInterval('P1Y');.

100 Years is really too long :-D

[funkeye]

Yeah I always get negative value of expires_in ( -1477799197 ) and the only way to fix it is to modify the Vendor files.

@nugrahawahyu you can simply change the token-lifetime - it solved my problems

    /**
     * Register any authentication / authorization services.
     *
     * @return void
     */
    public function boot()
    {
        $this->registerPolicies();

        Passport::routes();
        Passport::tokensExpireIn(Carbon::now()->addDays(30));
    }

[fgoni]

TokensExpireIn 'only' works for Authorization Code and Password Grant tokens, not for personal access tokens.

[themsaid]

a PR was submitted to solve the issue: #185

[dgutman10]

To change the expiration date of a PersonalAccessToken could create a ServiceProvider that extends from the Passport Service Provider. for example: To add 1 hour edit method registerAuthorizationServer() and change this

$server->enableGrantType(
   new PersonalAccessGrant, new DateInterval('P1Y')
);

for this

$server->enableGrantType(
    new PersonalAccessGrant, new DateInterval('PT1H')
 );

<?php

namespace App\Providers;

use DateInterval;
use Laravel\Passport\Bridge\PersonalAccessGrant;
use Laravel\Passport\Passport;
use Laravel\Passport\PassportServiceProvider;
use League\OAuth2\Server\AuthorizationServer;
use League\OAuth2\Server\Grant\ClientCredentialsGrant;

class YourPassportServiceProvider extends PassportServiceProvider
{
    /**
     * Bootstrap the application services.
     *
     * @return void
     */
    public function boot()
    {
        parent::boot();
    }

    /**
     * Register the application services.
     *
     * @return void
     */
    public function register()
    {
        parent::register();
    }

    /**
     * Register the authorization server.
     *
     * @return void
     */
    protected function registerAuthorizationServer()
    {
        $this->app->singleton(AuthorizationServer::class, function () {
            return tap($this->makeAuthorizationServer(), function ($server) {
                $server->enableGrantType(
                    $this->makeAuthCodeGrant(), Passport::tokensExpireIn()
                );

                $server->enableGrantType(
                    $this->makeRefreshTokenGrant(), Passport::tokensExpireIn()
                );

                $server->enableGrantType(
                    $this->makePasswordGrant(), Passport::tokensExpireIn()
                );

                $server->enableGrantType(
                    new PersonalAccessGrant, new DateInterval('PT1H')
                );

                $server->enableGrantType(
                    new ClientCredentialsGrant, Passport::tokensExpireIn()
                );

                if (Passport::$implicitGrantEnabled) {
                    $server->enableGrantType(
                        $this->makeImplicitGrant(), Passport::tokensExpireIn()
                    );
                }
            });
        });
    }
}

[diazemiliano-zz]

Hi guys, I've set the expires_at date in database to one year before now. But it seems Passport isn't checking expiration dates on personal access tokens. That's a default behavior? Thanks.

[hlorofos]

@diazemiliano in my case it doesn't validated at all, no matter which type of client I'm used.

[chrisgillis]

My password granted tokens seem to be expiring much more quickly than Carbon::now()->addDays(1)... they seem to last about 2 hours max

[dgutman10]

$authorizarionServer = app()->make(\League\OAuth2\Server\AuthorizationServer::class);
$authorizationServer->enableGrantType(
new PersonalAccessGrant, new DateInterval('PT1M')
);

    return JsonResponse::create(
        $user->createToken(
            $user->getAttribute('name') . " " . Carbon::now(),
            $scopes = ""
        ),
        JsonResponse::HTTP_OK
    );

[o8x]

十分感谢 @DiegoGutman 的方案完美解决了我的问题 ,向你致敬

[NicksonYap]

Thanks @dgutman10 !
This works :)

[vivektakrani]

One can simply update the expiry time for Personal token using personalAccessTokensExpireIn method in AuthServiceProvider's boot method.
Check https://stackoverflow.com/a/54196090/3535399

[netwons]

You are trying to create Personal Access Token.

// Passport::tokensExpireIn(now()->addDays(15));
// Passport::refreshTokensExpireIn(now()->addDays(30));

Get or set when personal access tokens expire.

Passport::personalAccessTokensExpireIn(now()->addHour(1));
Result :

array:2 [
"token" => "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9...."
"ExpireTime" => "59 minutes from now"
]

[abdullah-ds]

This will work 💯%
In AuthServiceProvider, copy this below line into your boot method;

Passport::personalAccessTokensExpireIn(now()->addMinutes(10));

[Prefix20192]

Yes, it works, but how do I make it so that it is not issued globally?

For example, in AuthServiceProvider.php we register the lifetime for all personal tokens, but how do we do this for a specific method in the controller, for example, the recovery method