Skip to main content

Short-Lived JWTs

For certain requests, such as those directed from the Witboost UI to the Witboost Computational Governance, Witboost does not directly forward the user session token.

Instead, Witboost exchanges the session token for a short-lived JWT. This JWT is then used to authenticate the request against the target service.

Token Duration

The lifetime of this short-lived JWT by default is set to 5 minutes. However, you can adjust it with the following property in the backend configuration, in the values.yaml:

# inside your values.yaml
ui:
  appConfig:
    # ... other configurations  ...
    backend:
      auth:
        shortLivedTokenDurationSeconds: <seconds>

Make sure the configured duration balances security (shorter) with operational reliability (longer).