audrius/pms
1
0
Fork 1
mirror of https://github.com/OCA/pms.git synced 2025-01-29 00:17:45 +02:00
Code Issues Packages Projects Releases Wiki Activity

[IMP]pms_api_rest: improvement login token expiration

Browse Source
This commit is contained in:
Darío Lodeiros
2024-04-17 11:29:21 +02:00
parent 56969849f7
commit 50dad1d4af
1 changed files with 4 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
pms_api_rest/services/pms_login_service.py
View File

@@ -37,9 +37,8 @@ class PmsLoginService(Component):
user_record = (
self.env["res.users"].sudo().search([("login", "=", user.username)])
)
# formula = ms_now + ms in 1 sec * secs in 1 min
minutes = 10000
timestamp_expire_in_a_min = int(time.time() * 1000.0) + 1000 * 60 * minutes
# formula = ms_now + 24 hours
timestamp_expire_in_a_sec = int(time.time()) + 24 * 60 * 60
if not user_record:
raise werkzeug.exceptions.Unauthorized(_("wrong user/pass"))
@@ -59,7 +58,7 @@ class PmsLoginService(Component):
{
"aud": "api_pms",
"iss": "pms",
"exp": timestamp_expire_in_a_min,
"exp": timestamp_expire_in_a_sec,
"username": user.username,
},
key=validator.secret_key,
@@ -71,7 +70,7 @@ class PmsLoginService(Component):
return PmsApiRestUserOutput(
token=token,
expirationDate=timestamp_expire_in_a_min,
expirationDate=timestamp_expire_in_a_sec,
userId=user_record.id,
userName=user_record.name,
userFirstName=user_record.firstname or None,