fix(core): Decrease reset password token expire time (#7598)

Decrease the expiration time from 1 day to 20 minutes Github issue / Community forum post (link here to close automatically):
n8n-io · Nov 3, 2023 · 2aa7f63 · 2aa7f63
1 parent b532a7b
commit 2aa7f63
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/packages/cli/src/UserManagement/email/templates/passwordReset.html b/packages/cli/src/UserManagement/email/templates/passwordReset.html
@@ -1,5 +1,5 @@
 <p>Hi {{firstName}},</p>
 <p>Somebody asked to reset your password on n8n ({{ domain }}).</p>
 <br />
-<p>Click the following link to choose a new password. The link is valid for 2 hours.</p>
+<p>Click the following link to choose a new password. The link is valid for 20 minutes.</p>
 <a href="{{ passwordResetUrl }}">{{ passwordResetUrl }}</a>
diff --git a/packages/cli/src/controllers/passwordReset.controller.ts b/packages/cli/src/controllers/passwordReset.controller.ts
@@ -120,7 +120,7 @@ export class PasswordResetController {
 		const resetPasswordToken = this.jwtService.signData(
 			{ sub: id },
 			{
-				expiresIn: '1d',
+				expiresIn: '20m',
 			},
 		);