guangzhiyao/bichon
1
0
Fork 0
mirror of https://github.com/rustmailer/bichon.git synced 2026-04-09 19:09:52 +00:00
Code Issues Projects Releases Packages Wiki Activity
Page: WebUI Authentication Token Expiration
Pages
Configuration Reference Custom Storage Configuration De‐duplication FAQ (Frequently Asked Questions) Home How to Select Folders to Sync Permissions and Multi‐User System Reset Admin Password (Offline Tool) Securing Credentials: Encrypting Passwords and OAuth Tokens Setting the Bichon Encryption Password Store External OAuth2 Token API Using Bichonctl For Email Import WebUI Authentication Token Expiration
1 WebUI Authentication Token Expiration
rustmailer edited this page 2026-02-12 02:18:49 +08:00
Table of Contents

Bichon maintains two types of tokens per user, each serving a different purpose.

1. WebUI Token

  • A single, internal token per user
  • Not visible to the user
  • Generated on each login
  • Stored in localStorage
  • Expiration is enforced server-side
  • Controlled by bichon_webui_token_expiration_hours
    • Default: 168 hours (7 days)
  • Closing the browser does not log the user out
  • The user remains logged in until the token expires or they explicitly log out

2. API Tokens

  • User-managed tokens
  • Users can create multiple API tokens
  • No hard limit on the number of API tokens
  • Intended for programmatic access (API usage), including bichonctl