Feature Request - Persistent Tokens for Services

[nguyenlinhlinh]

Issue Name

Persistent Tokens for Services

Summary

At MAXIV and maybe also at other facilities we use functional accounts for different purposes. These services needs to log in with username and password to get a token every time they wants to push something to SciCat. I wonder if it is possible to get persistent token for there services.

[stephan271]

One could extend the lifetime of the tokens generated. I dont know if there is a built in limit for this currently.

[dylanmcreynolds]

@stephan271 the server appears to have an expiresIn configuration for this. https://github.com/SciCatProject/backend/blob/b8eeeb007c71a6bafa79af79db70775c788479af/server/boot/JWT.js#L6

[henrikjohansson712]

@nguyenlinhlinh If I remember it correctly, if you sign in, the token you get back is valid forever, unless you sign in again with that same account. If that's not the case, here's how to set it up: https://stackoverflow.com/questions/32738285/creating-permanent-accesstoken-in-loopback

[nguyenlinhlinh]

Thank you everyone for the input. Thank @henrikjohansson712, I will check it out.

[nguyenlinhlinh]

I tried to generate persistent token by logging in with ttl: -1 and it didnt work. I can see in the db that ttl is set to -1 but after a week I tried to request proposals I got 401.
{"username": "archiveManager", "password": "xxxxx", "ttl": -1}