From 39a9cefb9df634ae2858bfa421c005a30522ede2 Mon Sep 17 00:00:00 2001
From: YevhenBondarenko <ybondarenko@thingsboard.io>
Date: Fri, 10 May 2024 13:45:50 +0300
Subject: [PATCH] Jwt token factory refactored due to PE

---
 .../server/service/security/model/token/JwtTokenFactory.java   | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/application/src/main/java/org/thingsboard/server/service/security/model/token/JwtTokenFactory.java b/application/src/main/java/org/thingsboard/server/service/security/model/token/JwtTokenFactory.java
index f2e276a0ef..a47d0034a7 100644
--- a/application/src/main/java/org/thingsboard/server/service/security/model/token/JwtTokenFactory.java
+++ b/application/src/main/java/org/thingsboard/server/service/security/model/token/JwtTokenFactory.java
@@ -210,11 +210,12 @@ public class JwtTokenFactory {
 
         ZonedDateTime currentTime = ZonedDateTime.now();
 
+        claimsBuilder.expiration(Date.from(currentTime.plusSeconds(expirationTime).toInstant()));
+
         return Jwts.builder()
                 .claims(claimsBuilder.build())
                 .issuer(jwtSettingsService.getJwtSettings().getTokenIssuer())
                 .issuedAt(Date.from(currentTime.toInstant()))
-                .expiration(Date.from(currentTime.plusSeconds(expirationTime).toInstant()))
                 .signWith(getSecretKey(false), Jwts.SIG.HS512);
     }