From 48254a1e10652be4387ef3e778dbda043823b3f5 Mon Sep 17 00:00:00 2001
From: Konstantinos Kallas <konstantinos.kallas@hotmail.com>
Date: Tue, 8 Aug 2017 12:23:13 +0300
Subject: [PATCH] Change certificate notAfter to 90 days As stated in Let's
 Encrypt FAQ: https://letsencrypt.org/docs/faq/

---
 src/ejabberd_acme.erl | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/src/ejabberd_acme.erl b/src/ejabberd_acme.erl
index cf8e5bfa6..99dcdd6df 100644
--- a/src/ejabberd_acme.erl
+++ b/src/ejabberd_acme.erl
@@ -14,9 +14,6 @@
 	 scenario/3,
 	 scenario0/2,
 	 new_user_scenario/2
-         %% Not yet implemented
-	 %% key_roll_over/5
-         %% delete_authz/3
 	]).
 
 -include("ejabberd.hrl").
@@ -581,8 +578,8 @@ not_before_not_after() ->
     %% TODO: Make notBefore and notAfter configurable somewhere
     {MegS, Sec, MicS} = erlang:timestamp(),
     NotBefore = xmpp_util:encode_timestamp({MegS, Sec, MicS}),
-    %% The certificate will be valid for 60 Days after today
-    NotAfter = xmpp_util:encode_timestamp({MegS+5, Sec+184000, MicS}),
+    %% The certificate will be valid for 90 Days after today
+    NotAfter = xmpp_util:encode_timestamp({MegS+7, Sec+776000, MicS}),
     {NotBefore, NotAfter}.
 
 -spec to_public(jose_jwk:key()) -> jose_jwk:key().