diff options
| author | Morris Jobke <hey@morrisjobke.de> | 2018-08-31 10:26:09 +0300 |
|---|---|---|
| committer | Morris Jobke <hey@morrisjobke.de> | 2018-08-31 14:31:03 +0300 |
| commit | cf3f4888ccd403f1d27026d9dbfa061e4bc379e6 (patch) | |
| tree | 38c7d71548724d97a45c9640552ebe029920808e /core/Controller | |
| parent | 2a2261587921c80123b5077d16fcbde2a45c1a95 (diff) | |
Change password expiration time from 12h to 7d
We use the same logic for creating accounts without a password and there the 12h is a bit short. Users don't expect that the signup link needs to be clicked within 12h - 7d should be a more expected behavior.
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
Diffstat (limited to 'core/Controller')
| -rw-r--r-- | core/Controller/LostController.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/core/Controller/LostController.php b/core/Controller/LostController.php index eacd5847c6c..ab5a10b8035 100644 --- a/core/Controller/LostController.php +++ b/core/Controller/LostController.php @@ -187,7 +187,7 @@ class LostController extends Controller { throw new \Exception($this->l10n->t('Couldn\'t reset password because the token is invalid')); } - if ($splittedToken[0] < ($this->timeFactory->getTime() - 60*60*12) || + if ($splittedToken[0] < ($this->timeFactory->getTime() - 60*60*24*7) || $user->getLastLogin() > $splittedToken[0]) { throw new \Exception($this->l10n->t('Couldn\'t reset password because the token is expired')); } |