From 7470b2022279504fe4d71784540e80d7af8ad504 Mon Sep 17 00:00:00 2001
From: Wilson Rivera <wilson@wundergraph.com>
Date: Wed, 13 Aug 2025 11:48:47 -0400
Subject: [PATCH 1/2] fix: make the session cookie last as long as the Keycloak
 one

---
 controlplane/src/core/crypto/jwt.ts | 2 +-
 docker/keycloak/realm.json          | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/controlplane/src/core/crypto/jwt.ts b/controlplane/src/core/crypto/jwt.ts
index bc498789fb..bddc35e1b3 100644
--- a/controlplane/src/core/crypto/jwt.ts
+++ b/controlplane/src/core/crypto/jwt.ts
@@ -4,7 +4,7 @@ import { JWTDecodeParams, JWTEncodeParams } from '../../types/index.js';
 import { base64URLEncode } from '../util.js';
 
 export const nowInSeconds = () => Math.trunc(Date.now() / 1000);
-export const DEFAULT_SESSION_MAX_AGE_SEC = 24 * 60 * 60; // 1 day
+export const DEFAULT_SESSION_MAX_AGE_SEC = 14 * 24 * 60 * 60; // 14 days
 
 // The cookie name used to store the user session.
 export const userSessionCookieName = 'cosmo_user_session';
diff --git a/docker/keycloak/realm.json b/docker/keycloak/realm.json
index de2ffdf78b..b6b6b13e3b 100644
--- a/docker/keycloak/realm.json
+++ b/docker/keycloak/realm.json
@@ -9,8 +9,8 @@
   "refreshTokenMaxReuse": 0,
   "accessTokenLifespan": 28800,
   "accessTokenLifespanForImplicitFlow": 900,
-  "ssoSessionIdleTimeout": 86400,
-  "ssoSessionMaxLifespan": 86400,
+  "ssoSessionIdleTimeout": 259200,
+  "ssoSessionMaxLifespan": 1209600,
   "ssoSessionIdleTimeoutRememberMe": 0,
   "ssoSessionMaxLifespanRememberMe": 0,
   "offlineSessionIdleTimeout": 2592000,

From 866f9f9521fd3b8ae0dde6936f9a958215c90357 Mon Sep 17 00:00:00 2001
From: Wilson Rivera <wilson@wundergraph.com>
Date: Wed, 13 Aug 2025 11:57:21 -0400
Subject: [PATCH 2/2] chore: update `keycloak-realm.yml`

---
 helm/cosmo/templates/keycloak-realm.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/helm/cosmo/templates/keycloak-realm.yml b/helm/cosmo/templates/keycloak-realm.yml
index da5874ada6..96fceb04bf 100644
--- a/helm/cosmo/templates/keycloak-realm.yml
+++ b/helm/cosmo/templates/keycloak-realm.yml
@@ -18,8 +18,8 @@ data:
       "refreshTokenMaxReuse": 0,
       "accessTokenLifespan": 28800,
       "accessTokenLifespanForImplicitFlow": 900,
-      "ssoSessionIdleTimeout": 86400,
-      "ssoSessionMaxLifespan": 86400,
+      "ssoSessionIdleTimeout": 259200,
+      "ssoSessionMaxLifespan": 1209600,
       "ssoSessionIdleTimeoutRememberMe": 0,
       "ssoSessionMaxLifespanRememberMe": 0,
       "offlineSessionIdleTimeout": 2592000,