Thingsboard : How to retrieve JWT Token and define expiry time?

I am just studying the Thingsboard IoT platform features. And we know that to retrieve JWT Token for a user, we should POST following API command,

curl -X POST --header "Content-Type: application/json" --header "Accept: application/json" -d "{"username":"[email protected]", "password":"xxxxxx"}" "https://thingsboard.cloud/api/auth/login"

The timeout for this JWT token is set to "9000" sec by default.

How can we modify this Token expiry time?

Your help would be appreciated.

Thank you.

Solution

This should be configured as part of security.jwt.tokenExpirationTime

https://thingsboard.io/docs/user-guide/install/config/

You should probably need to use the refresh token to keep your session logged in via /auth/token

Twilio Access Token - how can I check that JWT token (created with Twilio) is expired, from Swift side?
Securing JWT tokens against attackers
Spring Security issue with JWT: Cannot subclass final class JwtAuthenticationProvider
How to avoid multiple token refresh requests when making simultaneous API requests with an expired token
Google Cloud: sign a JWT while impersonating a service account
How to generate a refresh token?
How to avoid multiple refresh token call, if there are multiple API calls get unauthorized because access token expired
CSRF token requirement if implemented JWT
Creating JWT in Coldfusion for google Service account
Unexpected JWT alg received, expected RS256, got: HS256
Why do I get a "io.jsonwebtoken.ExpiredJwtException"?
.NET Core 3.1 GoogleSignIn -The authentication handler registered for scheme 'Bearer' is 'JwtBearerHandler' which cannot be used for SignInAsync
JWT signature verification failing
IDX10603: The algorithm: 'HS256' requires the SecurityKey.KeySize to be greater than '128' bits. KeySize reported: '32'. Parameter name: key.KeySize
How can I securize my code-first gRPC endpoints using Azure Authentication?
AWS Lambda Custom JWT Validation
Flask JWT Extended missing csrf access token
Where should I refresh my JWT in SvelteKit
Token is generated at the endpoint but does not arrive on the page
Is it okay to encrypt a 3rd party access token and refresh token, in an encrypted JWT?
In JWT Authentication in .NET 7, how can a "validated" token be "missing"?
What to validate 'iat' and 'sub' claims of a JWT against?
How to use jti claim in a JWT
Can't import jwt-decode in JavaScript file in React project
JWT and CSRF differences
Getting 'secretOrPrivateKey must have a value' error in NestJS JWT authentication
Google Sheets, JWT client with Service Account
Angular 17 & dot net Core 8 - Jwt on refresh adding to Audience
Is "scope" a standard claim?
Error when trying to Promisify JWT in Typescript