e87715aee7
The rescue onboarding emails hardcoded a 60-minute expiry -- way too short for a paid customer who hasn't engaged yet (they may not check email for hours/days), so Paul's and Mitchell's links expired before they used them. Onboarding links now last 7 days (ONBOARDING_TTL_MINUTES); the standard security password-RESET window bumped 30min -> 2h. Re-issued fresh 7-day links to all 3 affected customers (none had set a password yet) via reissue-onboarding-links.mjs, cc'd. |
||
|---|---|---|
| .. | ||
| migrations | ||
| src | ||
| test | ||
| Dockerfile | ||
| package-lock.json | ||
| package.json | ||
| start-dev.sh | ||
| tsconfig.json | ||