From 4b3f2ab91c52958d1ae21651679372c3d3b2a0b3 Mon Sep 17 00:00:00 2001
From: Marco <marco@delight.im>
Date: Mon, 25 Feb 2019 19:52:32 +0100
Subject: [PATCH] Document option of custom expiry of requests for
 'Auth#forgotPassword'

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index b13da2a..24208dd 100644
--- a/README.md
+++ b/README.md
@@ -279,6 +279,8 @@ You should build an URL with the selector and token and send it to the user, e.g
 $url = 'https://www.example.com/reset_password?selector=' . \urlencode($selector) . '&token=' . \urlencode($token);
 ```
 
+If the default lifetime of the password reset requests does not work for you, you can use the third parameter of `Auth#forgotPassword` to specify a custom interval in seconds after which the requests should expire.
+
 #### Step 2 of 3: Verifying an attempt
 
 As the next step, users will click on the link that they received. Extract the selector and token from the URL.