fix: for one-time access tokens and signup tokens, pass TTLs instead of absolute expiration date (#855)

2026-03-30 11:16:35 +00:00 · 2025-08-21 23:02:56 -07:00
parent 49f0fa423c
commit 7ab0fd3028
12 changed files with 205 additions and 70 deletions
--- a/frontend/src/routes/settings/account/login-code-modal.svelte
+++ b/frontend/src/routes/settings/account/login-code-modal.svelte
@@ -22,9 +22,8 @@

 	$effect(() => {
 		if (show) {
-			const expiration = new Date(Date.now() + 15 * 60 * 1000);
 			userService
-				.createOneTimeAccessToken(expiration, 'me')
+				.createOneTimeAccessToken('me')
 				.then((c) => {
 					code = c;
 					loginCodeLink = page.url.origin + '/lc/' + code;
@@ -54,7 +53,7 @@
 			<CopyToClipboard value={code!}>
 				<p class="text-3xl font-code">{code}</p>
 			</CopyToClipboard>
-			<div class="text-muted-foreground my-2 flex items-center justify-center gap-3">
+			<div class="flex items-center justify-center gap-3 my-2 text-muted-foreground">
 				<Separator />
 				<p class="text-xs text-nowrap">{m.or_visit()}</p>
 				<Separator />