fix: for one-time access tokens and signup tokens, pass TTLs instead of absolute expiration date (#855)

2026-03-31 11:46:37 +00:00 · 2025-08-21 23:02:56 -07:00
parent 49f0fa423c
commit 7ab0fd3028
12 changed files with 205 additions and 70 deletions
--- a/frontend/src/lib/components/signup/signup-token-modal.svelte
+++ b/frontend/src/lib/components/signup/signup-token-modal.svelte
@@ -37,8 +37,7 @@

 	async function createSignupToken() {
 		try {
-			const expiration = new Date(Date.now() + availableExpirations[selectedExpiration] * 1000);
-			signupToken = await userService.createSignupToken(expiration, usageLimit);
+			signupToken = await userService.createSignupToken(availableExpirations[selectedExpiration], usageLimit);
 			signupLink = `${page.url.origin}/st/${signupToken}`;

 			if (onTokenCreated) {