From b6f3b8459f8e4cdbbed2e07028e81f3a4380700b Mon Sep 17 00:00:00 2001
From: Gwendolyn <me@gwendolyn.dev>
Date: Sat, 2 Dec 2023 02:23:44 +0100
Subject: [PATCH] fix api secret valid until

---
 src/c3nav/api/newauth.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/c3nav/api/newauth.py b/src/c3nav/api/newauth.py
index 2a06f83d..0fb9baf7 100644
--- a/src/c3nav/api/newauth.py
+++ b/src/c3nav/api/newauth.py
@@ -79,7 +79,7 @@ class APITokenAuth(HttpBearer):
             try:
                 secret = Secret.objects.filter(
                     Q(api_secret=token.removeprefix("secret:")),
-                    Q(valid_until__isnull=True) | Q(valid_until__lt=timezone.now()),
+                    Q(valid_until__isnull=True) | Q(valid_until__gte=timezone.now()),
                 ).select_related("user", "user__permissions").get()
             except Secret.DoesNotExist:
                 raise APITokenInvalid