final changes

2025-09-22 11:14:32 +02:00
parent cf157643d7
commit bf9ae5f01f
509 changed files with 920 additions and 64152 deletions
@@ -20,10 +20,28 @@ REDIS_HOST=localhost
 REDIS_PORT=6379
 REDIS_URL=redis://localhost:6379

-# JWT CONFIGURATION
-JWT_SECRET=your_super_secret_jwt_key_change_in_production
-JWT_EXPIRY=86400
-JWT_EXPIRATION=24h
+# JWT AUTHENTICATION CONFIGURATION
+JWT_SECRET=your-super-secure-secret-key-here
+JWT_REFRESH_SECRET=your-super-secure-refresh-secret-key-here
+
+# Access Token Expiry (choose ONE option, priority order listed):
+JWT_ACCESS_TOKEN_EXPIRY=1800        # Seconds (recommended for production)
+# JWT_ACCESS_TOKEN_EXPIRATION=30m   # Duration string (user-friendly)
+# JWT_EXPIRY=1800                   # Legacy: seconds
+# JWT_EXPIRATION=30m                # Legacy: duration string
+
+# Refresh Token Expiry (choose ONE option, priority order listed):
+JWT_REFRESH_TOKEN_EXPIRY=604800     # Seconds (7 days)
+# JWT_REFRESH_TOKEN_EXPIRATION=7d   # Duration string (recommended)
+# JWT_REFRESH_EXPIRATION=7d         # Legacy: duration string
+
+# Cookie Names (optional)
+JWT_COOKIE_NAME=auth_token
+JWT_REFRESH_COOKIE_NAME=refresh_token
+
+# Legacy JWT Configuration (deprecated - use above options)
+# JWT_EXPIRY=86400
+# JWT_EXPIRATION=24h
 GAME_TOKEN_EXPIRY=86400

 # EMAIL SERVICE CONFIGURATION