af6f1924eb
MIN_TOKEN_LIFE_SECONDS is the number of seconds that the token provided must be valid for to be used when making authentication requests. 1 second has always been a dumb number and was not based on any existing value. Because a user token may be reused by a service to make requests on behalf of a user if the token is valid when sent it may not be valid for the life of the request. 2 minutes is also an arbitrary value, but it should allow plenty of time for service requests to complete before being rejected. Closes-Bug: #1441910 Change-Id: I395a0770e72d1ec7904e656ca382a5270f793a8b