From ebe7f6222dd889786d759397dd9ed260ca7e4556 Mon Sep 17 00:00:00 2001
From: kqjy <jun@jzwsite.com>
Date: Thu, 5 Feb 2026 19:08:18 +0800
Subject: [PATCH] Fix hardcoded secret key ttl session

---
 app/ui.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/app/ui.py b/app/ui.py
index 1aec8ce..9df2131 100644
--- a/app/ui.py
+++ b/app/ui.py
@@ -301,7 +301,8 @@ def login():
             flash(_friendly_error_message(exc), "danger")
             return render_template("login.html")
         creds = {"access_key": access_key, "secret_key": secret_key}
-        token = _secret_store().remember(creds, ttl=3600)
+        ttl = int(current_app.permanent_session_lifetime.total_seconds())
+        token = _secret_store().remember(creds, ttl=ttl)
         session["cred_token"] = token
         session.permanent = True
         flash(f"Welcome back, {principal.display_name}", "success")