how to make json web token not expire by session

Unanswered

Cuvier’s Dwarf Caiman posted this in #help-forum

Cuvier’s Dwarf CaimanOP

2024-07-20T14:48:55.005Z

I would like to have a token that does not automatically expire when I restart the browser.
Any thoughts on this?

const token = jsonwebtoken.sign({ id: user.id }, secret, { expiresIn: '7d' })

Thank you, Timo

28 Replies

@Cuvier’s Dwarf Caiman I would like to have a token that does not automatically expire when I restart the browser. Any thoughts on this? ts const token = jsonwebtoken.sign({ id: user.id }, secret, { expiresIn: '7d' }) Thank you, Timo

@ts-ignore

2024-07-20T14:49:14.144Z

set it in cookies with a proper expiry date

if there's no expire, the cookie will be deleted after session

Cuvier’s Dwarf CaimanOP

2024-07-20T14:50:26.404Z

cookies().set('token', token, {
  httpOnly: true
})

What format should the expiration value have?

@Cuvier’s Dwarf Caiman ts cookies().set('token', token, { httpOnly: true }) What format should the expiration value have?

@ts-ignore

2024-07-20T14:51:40.303Z

'use server'
 
import { cookies } from 'next/headers'
 
async function setCookie(data) {
  const oneDay = 24 * 60 * 60 * 1000
  cookies().set('name', 'value', { expires: Date.now() + oneDay })
}

Cuvier’s Dwarf CaimanOP

2024-07-20T14:52:52.060Z

so I have to multiply by 1000 ??

@Cuvier’s Dwarf Caiman so I have to multiply by 1000 ??

@ts-ignore

2024-07-20T14:53:36.324Z

yes, it must be in milliseconds

Cuvier’s Dwarf CaimanOP

2024-07-20T14:53:41.131Z

@ts-ignore

2024-07-20T14:53:52.336Z

you can use the ms package from vercel to convert human readable text to milliseconds

https://npmjs.com/package/ms

Cuvier’s Dwarf CaimanOP

2024-07-20T14:54:09.492Z

the 1000 milliseconds were my mistake

and what format should the token expiration value have?

@Cuvier’s Dwarf Caiman and what format should the token expiration value have?

@ts-ignore

2024-07-20T14:56:30.885Z

format?

Cuvier’s Dwarf CaimanOP

2024-07-20T14:58:58.189Z

when I add expires value to cookies(), the cookie is not set.

@ts-ignore

2024-07-20T15:00:45.230Z

can you show your code

Cuvier’s Dwarf CaimanOP

2024-07-20T15:02:34.558Z

yes I will

This is the part where the token is set as a cookie:

const token = sign({ id: user.id }, secret)
if (!token) {
  console.error('Token has not been created.')
  return false
} else {
  cookies().set('token', token, {
    httpOnly: true
  })
  console.log('Token has been created.')
}

@Cuvier’s Dwarf Caiman This is the part where the token is set as a cookie: ts const token = sign({ id: user.id }, secret) if (!token) { console.error('Token has not been created.') return false } else { cookies().set('token', token, { httpOnly: true }) console.log('Token has been created.') }

@ts-ignore

2024-07-20T15:05:22.703Z

this will set it but just for this specific session

Cuvier’s Dwarf CaimanOP

2024-07-20T15:05:56.388Z

when I add "expires" to the cookie, the token is not set anymore

@Cuvier’s Dwarf Caiman when I add "expires" to the cookie, the token is not set anymore

@ts-ignore

2024-07-20T15:06:14.587Z

add the expire in cookies().set here

show the code where you set expiry

Cuvier’s Dwarf CaimanOP

2024-07-20T15:07:02.036Z

const token = sign({ id: user.id }, secret)
if (!token) {
  console.error('Token has not been created.')
  return false
} else {
  cookies().set('token', token, {
    httpOnly: true,
    expires: 1000 * 60 * 60 * 24 * 7
  })
  console.log('Token has been created.')
}