…which I assume is saying the expiration will be 2 hours in the future, though I’ve yet to test this.
Questions related to Signature/Session Lifetime:
Is there a max lifetime? i.e. 24 hours?
Does each user need their own unique signature, or can one signature be used per topic?
Example of the latter, if 3 people were joining a topic named “teammeeting”:
Oh, I forgot passwords are topic-specific (I think), so the password in the above example would be the same for all users, instead of the 3 different passwords shown there.
But I don’t think this changes anything about my questions… topic-based signatures may still be possible, since the signature payload doesn’t seem to mandate any user-specific info:
Somewhere in the documentation it states that the max lifetime is 48 hours. I haven’t tested this limit, but have seen available error codes for it so I assume this is accurate. I’ve gone from 2 minutes to 24 hours with no issues, though.
The signatures are unique to topic && password. You can re-use a single signature for multiple users as long as it is within the expiration time. You can also use separate signatures for each user, so whatever works best for you should be fine.
From my testing, no. I set an expiration to 2m and my session remained active well after that expiration had ended. I think the expiration is only checked during join.