Laravel Passport token lifetime

php laravel oauth-2.0 laravel-5.4 laravel-passport
Terion picture Terion · Mar 5, 2017 · Viewed 40.1k times · Source

I don't get what I'm doing wrong. I can't set token expiration time.

<?php

namespace App\Providers;

class AuthServiceProvider extends ServiceProvider
{
    public function boot()
    {
        $this->registerPolicies();

        Passport::tokensExpireIn(Carbon::now()->addDays(1));
        Passport::refreshTokensExpireIn(Carbon::now()->addDays(30));
    }
}

BUT when I call $user->createToken(), for example like this:

<?php
// as a demo
namespace App\Http\Middleware;

class ParseSpecialToken
{
    public function handle($request, Closure $next)
    {
        $user = User::find(1);
        $accessToken = $user->createToken('Some token')->accessToken;
        $request->headers->add(['Authorization' => 'Bearer '. $accessToken]);

        return $next($request);
    }
}

Token expiration is still 1 year, not 1 day. Why? How to change exp time?

Answer

vivek takrani picture vivek takrani · Jan 15, 2019

Here are the methods used to update expiration time for all the grant types :

Personal access token: 

public function boot(){
        $this->registerPolicies();

        Passport::routes();
        Passport::personalAccessTokensExpireIn(Carbon::now()->addHours(24));
        Passport::refreshTokensExpireIn(Carbon::now()->addDays(30));
}

Rest all

public function boot(){
        $this->registerPolicies();

        Passport::routes();
        Passport::tokensExpireIn(Carbon::now()->addHours(24));
        Passport::refreshTokensExpireIn(Carbon::now()->addDays(30));
}

Just update the above code in the boot method of AuthServiceProvider.

Related questions

oauth-private.key does not exist or is not readable

So, I imported another project from Bitbucket and tried to launch it using php artisan serve, I always get this error: [LogicException] Key path "file:///var/www/html/DesignViewer5/storage/oauth-private.key" does not exist or is not readable I …

Read More
How to use Laravel Passport with a custom username column

Now I'm using something like that for authenticating the user on my base site: if (Auth::attempt($request->only(['id', 'password']))) { // } How can I modify this code for using custom column as username? https://laravel.com/docs/5.3/passport#password-grant-tokens

Read More
Why should Client Creadentials be associated with a user in Laravel Passport?

I want to use Client Credentials to authenticate client applications to access the API. My problem is with creating client credentials. Using php artisan passport:client requires me to enter a user_id to associate the client to that user. …

Read More