David Roth
Reputation: 193
Rails - Devise - Disable Reset Password Token expiration time
I currently working on a Rails app with devise authentication. I need to disabled the token expiration for reset password. According to Devise Documentation on Recoverable there is not configuration to do that. The only method I think to make this works is to override Recoverable and the reset_password_period_valid? function to always return true. But I not sure if is the best/proper solution.
Current on my devise.rb I have:
# ==> Configuration for :recoverable
#
# Defines which key will be used when recovering the password for an account
# config.reset_password_keys = [ :email ]
# Time interval you can reset your password with a reset password key.
# Don't put a too small interval or your users won't have the time to
# change their passwords.
config.reset_password_within = 2.hours
Upvotes: 0
Views: 1259
Answers (1)
Vasiliy Novikov
Reputation: 351
You can set it as 10 years, for example, and it will be like disabled token expiration.
Upvotes: 2
Related Questions
- How to generate reset password token
- Devise - how to check if reset password is token is valid
- How can I make Devise immediately inform user of expired password reset token?
- Devise how to change reset_password_token error
- Devise Reset Authentication Token
- devise reset password token invalid
- Rails devise reset password token doesn't get clear
- Expiring authentication token in Devise
- Rails Devise reset_authentication_token
- Rails devise reset_password_token keeps getting marked as "expired"