diff --git a/.env.example b/.env.example
index 5567285..ac38e5e 100644
--- a/.env.example
+++ b/.env.example
@@ -22,11 +22,11 @@ SUPABASE_JWT_SECRET=""
 CHALLENGE_TYPE="SIGNATURE"
 CHALLENGE_VERSION="1"
 CHALLENGE_BUFFER_SIZE=128
-CHALLENGE_TTL_MS=30000 # 30 seconds
-CHALLENGE_ROTATION_TTL_MS=60000 # 60 seconds - Longer because the shares need to be regenerated, which can take some time.
+CHALLENGE_TTL_MS=60000 # 60 seconds
+CHALLENGE_ROTATION_TTL_MS=120000 # 120 seconds - Longer because the shares need to be regenerated, which can take some time.
 
 # Shares:
-SHARE_ACTIVE_TTL_MS=600000 # 10 minutes
+SHARE_ACTIVE_TTL_MS=86400000 # 24 hours
 SHARE_INACTIVE_TTL_MS=7776000000 # 3 months
 SHARE_MAX_ROTATION_IGNORES=3 # This happens automatically, so it should rarely be ignored
 SHARE_MAX_FAILED_ACTIVATION_ATTEMPTS=3
diff --git a/next.config.mjs b/next.config.mjs
index ba4b6bf..1bf9b3e 100644
--- a/next.config.mjs
+++ b/next.config.mjs
@@ -9,8 +9,8 @@ const nextConfig = {
           { key: "Access-Control-Allow-Credentials", value: "true" },
           { key: "Access-Control-Allow-Origin", value: "*" }, // replace this your actual origin
           { key: "Access-Control-Allow-Methods", value: "GET,DELETE,PATCH,POST,PUT" },
-          // { key: "Access-Control-Allow-Headers", value: "X-CSRF-Token, X-Requested-With, Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, X-Api-Version" },
-          { key: "Access-Control-Allow-Headers", value: "*" },
+          { key: "Access-Control-Allow-Headers", value: "Content-Type, Authorization, User-Agent, X-Application-Id, X-Client-Id, X-Device-Nonce" },
+          // { key: "Access-Control-Allow-Headers", value: "*" },
         ]
       }
     ]