OAuth: update refresh token TTL

2 files changed, 2 insertions, 2 deletions

diff --git a/src/main/java/com/juick/config/SecurityConfig.java b/src/main/java/com/juick/config/SecurityConfig.java
index bb2a47cb..34e0a84d 100644
--- a/src/main/java/com/juick/config/SecurityConfig.java
+++ b/src/main/java/com/juick/config/SecurityConfig.java
@@ -20,7 +20,6 @@ package com.juick.config;
 import com.juick.KeystoreManager;
 import com.juick.service.ActivityPubService;
 import com.juick.service.UserService;
-import com.juick.service.security.BearerTokenAuthenticationFilter;
 import com.juick.service.security.HTTPSignatureAuthenticationFilter;
 import com.juick.service.security.HashParamAuthenticationFilter;
 import com.juick.service.security.JuickUserDetailsService;
diff --git a/src/main/java/com/juick/www/api/Mastodon.java b/src/main/java/com/juick/www/api/Mastodon.java
index 3d31dcdf..af1c5ef7 100644
--- a/src/main/java/com/juick/www/api/Mastodon.java
+++ b/src/main/java/com/juick/www/api/Mastodon.java
@@ -118,7 +118,8 @@ public class Mastodon {
                 .authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
                 .redirectUri(redirectUri)
                 .scopes((coll) -> coll.addAll(parseScopes(scopes)))
-                .tokenSettings(TokenSettings.builder().accessTokenTimeToLive(Duration.ofDays(365)).build())
+                .tokenSettings(TokenSettings.builder().accessTokenTimeToLive(Duration.ofDays(365))
+                        .refreshTokenTimeToLive(Duration.ofDays(365 * 5)).build())
                 .clientSettings(ClientSettings.builder().requireAuthorizationConsent(true).build()).build();
         registeredClientRepository.save(registeredClient);
         return new ApplicationResponse(