From 99bfe5c26ec6868aa8dbc2d560843d6dcc2c6d7d Mon Sep 17 00:00:00 2001
From: Dominik George <dominik.george@teckids.org>
Date: Wed, 17 Aug 2022 22:42:28 +0200
Subject: [PATCH] Automatically clean up OAuth tokens after 24 hours

---
 CHANGELOG.rst            | 1 +
 aleksis/core/settings.py | 1 +
 2 files changed, 2 insertions(+)

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index 4a0dc901e..dcf2c81ca 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -35,6 +35,7 @@ Fixed
 ~~~~~
 
 * Celery's logging did not honour Django's logging level
+* Automatically clean up expired OAuth tokens after 24 hourse
 
 `2.10.1`_ - 2022-07-24
 ----------------------
diff --git a/aleksis/core/settings.py b/aleksis/core/settings.py
index 3313076e8..913813f34 100644
--- a/aleksis/core/settings.py
+++ b/aleksis/core/settings.py
@@ -400,6 +400,7 @@ OAUTH2_PROVIDER = {
     "SCOPES_BACKEND_CLASS": "aleksis.core.util.auth_helpers.AppScopes",
     "OAUTH2_VALIDATOR_CLASS": "aleksis.core.util.auth_helpers.CustomOAuth2Validator",
     "OIDC_ENABLED": True,
+    "REFRESH_TOKEN_EXPIRE_SECONDS": _settings.get("oauth2.token_expiry", 86400),
 }
 OAUTH2_PROVIDER_APPLICATION_MODEL = "core.OAuthApplication"
 OAUTH2_PROVIDER_GRANT_MODEL = "core.OAuthGrant"
-- 
GitLab