From 2447ecb0f8a2aaaf848b245f2fbe8811af2706a6 Mon Sep 17 00:00:00 2001
From: Tomi Turtiainen <10324676+tomi@users.noreply.github.com>
Date: Fri, 3 Nov 2023 10:11:07 +0200
Subject: [PATCH] fix(core): decrease reset password token expire time

---
 .../cli/src/UserManagement/email/templates/passwordReset.html   | 2 +-
 packages/cli/src/controllers/passwordReset.controller.ts        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/packages/cli/src/UserManagement/email/templates/passwordReset.html b/packages/cli/src/UserManagement/email/templates/passwordReset.html
index e7f5bce5dae4a..865072275e39e 100644
--- a/packages/cli/src/UserManagement/email/templates/passwordReset.html
+++ b/packages/cli/src/UserManagement/email/templates/passwordReset.html
@@ -1,5 +1,5 @@
 <p>Hi {{firstName}},</p>
 <p>Somebody asked to reset your password on n8n ({{ domain }}).</p>
 <br />
-<p>Click the following link to choose a new password. The link is valid for 2 hours.</p>
+<p>Click the following link to choose a new password. The link is valid for 20 minutes.</p>
 <a href="{{ passwordResetUrl }}">{{ passwordResetUrl }}</a>
diff --git a/packages/cli/src/controllers/passwordReset.controller.ts b/packages/cli/src/controllers/passwordReset.controller.ts
index b619e50f0400a..c8bf9ceeaaff2 100644
--- a/packages/cli/src/controllers/passwordReset.controller.ts
+++ b/packages/cli/src/controllers/passwordReset.controller.ts
@@ -120,7 +120,7 @@ export class PasswordResetController {
 		const resetPasswordToken = this.jwtService.signData(
 			{ sub: id },
 			{
-				expiresIn: '1d',
+				expiresIn: '20m',
 			},
 		);