fix: 📝 add missing fields to the backend_config.toml file (#568)

TDemeco · TDemeco · commit 18a562abfebe · 2025-11-13T19:57:20.000+01:00
diff --git a/backend/backend_config.toml b/backend/backend_config.toml
@@ -18,8 +18,21 @@ default_page_size = 20
 # Requests exceeding this limit will be capped to this value
 max_page_size = 100
 
+# Authentication configuration
 [auth]
+# JWT secret key for signing and verifying tokens (required)
+# Must be at least 32 bytes (64 hex characters) for HS256 algorithm
+# Can also be set via JWT_SECRET environment variable (takes precedence)
 jwt_secret = "0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef"
+# JWT token expiration time in minutes (default: 300 = 5 hours)
+# This determines how long a user session remains valid
+session_expiration_minutes = 300
+# Authentication nonce expiration time in seconds (default: 300 = 5 minutes)
+# This determines how long a user has to complete the authentication flow
+nonce_expiration_seconds = 300
+# SIWE (Sign-In with Ethereum) domain used in authentication messages
+# Should match the domain where this backend is accessible (default: "localhost")
+siwe_domain = "localhost"
 
 # StorageHub RPC configuration
 [storage_hub]
