feat: add SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME env variable

novuhq · Nov 21, 2024 · 01965bc · 01965bc
1 parent 6946a6f
commit 01965bc
Show file tree

Hide file tree

Showing 5 changed files with 10 additions and 1 deletion.
diff --git a/apps/api/src/.example.env b/apps/api/src/.example.env
@@ -87,3 +87,5 @@ TUNNEL_BASE_ADDRESS=
 PLAIN_SUPPORT_KEY='PLAIN_SUPPORT_KEY'
 PLAIN_IDENTITY_VERIFICATION_SECRET_KEY='PLAIN_IDENTITY_VERIFICATION_SECRET_KEY'
 NOVU_INTERNAL_SECRET_KEY=
+# expressed in seconds or a string describing a time span [zeit/ms](https://github.com/zeit/ms.js).  Eg: 60, "2 days", "10h", "7d"
+SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME=
diff --git a/apps/worker/src/.example.env b/apps/worker/src/.example.env
@@ -77,3 +77,5 @@ BROADCAST_QUEUE_CHUNK_SIZE=100
 MULTICAST_QUEUE_CHUNK_SIZE=100
 
 API_ROOT_URL=http://localhost:3000
+# expressed in seconds or a string describing a time span [zeit/ms](https://github.com/zeit/ms.js).  Eg: 60, "2 days", "10h", "7d"
+SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME=
diff --git a/docker/community/.env.example b/docker/community/.env.example
@@ -2,6 +2,8 @@
 # YOU MUST CHANGE THESE BEFORE GOING INTO PRODUCTION
 # used as a secret to verify the JWT token signature
 JWT_SECRET=your-secret
+# expressed in seconds or a string describing a time span [zeit/ms](https://github.com/zeit/ms.js).  Eg: 60, "2 days", "10h", "7d"
+SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME="15 days"
 # used to encrypt/decrypt the provider credentials
 STORE_ENCRYPTION_KEY=<ENCRYPTION_KEY_MUST_BE_32_LONG>
 

diff --git a/docker/community/docker-compose.yml b/docker/community/docker-compose.yml
@@ -81,6 +81,7 @@ services:
       AWS_SECRET_ACCESS_KEY: ${AWS_SECRET_ACCESS_KEY}
       JWT_SECRET: ${JWT_SECRET}
       STORE_ENCRYPTION_KEY: ${STORE_ENCRYPTION_KEY}
+      SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME: ${SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME}
       SENTRY_DSN: ${SENTRY_DSN}
       NEW_RELIC_APP_NAME: ${NEW_RELIC_APP_NAME}
       NEW_RELIC_LICENSE_KEY: ${NEW_RELIC_LICENSE_KEY}
@@ -118,6 +119,7 @@ services:
       AWS_ACCESS_KEY_ID: ${AWS_ACCESS_KEY_ID}
       AWS_SECRET_ACCESS_KEY: ${AWS_SECRET_ACCESS_KEY}
       STORE_ENCRYPTION_KEY: ${STORE_ENCRYPTION_KEY}
+      SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME: ${SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME}
       SENTRY_DSN: ${SENTRY_DSN}
       NEW_RELIC_APP_NAME: ${NEW_RELIC_APP_NAME}
       NEW_RELIC_LICENSE_KEY: ${NEW_RELIC_LICENSE_KEY}

diff --git a/libs/application-generic/src/services/auth/community.auth.service.ts b/libs/application-generic/src/services/auth/community.auth.service.ts
@@ -223,7 +223,8 @@ export class CommunityAuthService implements IAuthService {
         subscriberId: subscriber.subscriberId,
       },
       {
-        expiresIn: '15 day',
+        expiresIn:
+          process.env.SUBSCRIBER_WIDGET_JWT_EXPIRATION_TIME || '15 day',
         issuer: 'novu_api',
         audience: 'widget_user',
       },