Jwt token factory refactored due to PE

2024-05-10 13:45:50 +03:00 · 2024-05-10 13:45:50 +03:00 · 39a9cefb9d
commit 39a9cefb9d
parent 3bd8ec4468
1 changed files with 2 additions and 1 deletions
--- a/application/src/main/java/org/thingsboard/server/service/security/model/token/JwtTokenFactory.java
+++ b/application/src/main/java/org/thingsboard/server/service/security/model/token/JwtTokenFactory.java
@ -210,11 +210,12 @@ public class JwtTokenFactory {

        ZonedDateTime currentTime = ZonedDateTime.now();

+        claimsBuilder.expiration(Date.from(currentTime.plusSeconds(expirationTime).toInstant()));
+
        return Jwts.builder()
                .claims(claimsBuilder.build())
                .issuer(jwtSettingsService.getJwtSettings().getTokenIssuer())
                .issuedAt(Date.from(currentTime.toInstant()))
-                .expiration(Date.from(currentTime.plusSeconds(expirationTime).toInstant()))
                .signWith(getSecretKey(false), Jwts.SIG.HS512);
    }