Server token lifespan

Server generates tokens for password reset or email confirmation. Is the life span only 24 hours? How can I find out when the token expires?

The configurability is discussed here.

Token for password reset has life span 24 hours. This number is set in code. It would be better to add it to appsettings.json.
Token for email confirmation has 24 hours as a default setting. I did not find any place in the code where you could change the life span.