tf-stage2: use 1h timeout for keycloak pw resets
Recently somebody complained that the email only reached them after the
password reset link had already become invalid, which is definitely
something that can happen with the previously set 5min timeout. 5
minutes timeout are too short aswell for any complex email analysis
setup or greylisting, and we therefore bump this value to one hour,
which is still short enough from a security perspective but gives our
users a bit more time to act on the reset.
Signed-off-by:
Christian Heusel <christian@heusel.eu>
parent
8df0f2f0
Branches keycloak-password-reset-time
No related tags found
Please register or sign in to comment