Merge pull request #443 from okta/OKTA-917715

BinoyOza-okta · web-flow · commit e90f60d7cc8f · 2025-04-16T17:16:58.000+05:30
Reduce JWT token expiration time.
diff --git a/okta/jwt.py b/okta/jwt.py
@@ -17,7 +17,7 @@ class JWT():
     OAUTH_ENDPOINT = "/oauth2/v1/token"
     HASH_ALGORITHM = "RS256"
     PEM_FORMAT = "PKCS1"
-    ONE_HOUR = 1 * 60 * 60
+    EXPIRATION = 1 * 60 * 50
     JWT_OPTIONS = {
         'verify_signature': True,
         'verify_aud': True,
@@ -116,7 +116,7 @@ def create_token(org_url, client_id, private_key, kid=None):
         my_pem, _ = JWT.get_PEM_JWK(private_key)
         # Get current time and expiry time for token
         issued_time = int(time.time())
-        expiry_time = issued_time + JWT.ONE_HOUR
+        expiry_time = issued_time + JWT.EXPIRATION
         # generate unique JWT ID
         generated_JWT_ID = str(uuid.uuid4())
 
