DEV Community: YUVRAJ The latest articles on DEV Community by YUVRAJ (@uvizhere). https://dev.to/uvizhere https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3589385%2F7b7732ae-414d-4ff8-b6dd-22ab962db383.jpeg DEV Community: YUVRAJ https://dev.to/uvizhere en Resolving TS2769: Bridging the Type Gap in Node.js JWT Expiration YUVRAJ Tue, 11 Nov 2025 10:45:23 +0000 https://dev.to/uvizhere/resolving-ts2769-bridging-the-type-gap-in-nodejs-jwt-expiration-5doj https://dev.to/uvizhere/resolving-ts2769-bridging-the-type-gap-in-nodejs-jwt-expiration-5doj <h2> Introduction </h2> <p>In modern Node.js environments, including NestJS, security best practices demand that configuration values such as JWT expiration times are managed dynamically via environment variables. However, this practice often leads to a stubborn TypeScript compilation failure known as <strong>TS2769</strong>, which signifies a fundamental conflict between TypeScript's static type inference and the specific type requirements of the underlying <code>jsonwebtoken</code> library.</p> <p>This guide provides multiple professional solutions to this common problem, with emphasis on both type safety and runtime validation.</p> <h2> 1. The Scenario: Dynamic Expiry Configuration </h2> <p>The issue arises when attempting to pass a string retrieved from a configuration service directly into the <code>expiresIn</code> option during JWT token signing.</p> <h3> 1.1 Environment Setup </h3> <p>We define clear, human-readable expiration times in our environment file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code># .env file configuration JWT_SECRET=YOUR_HARD_TO_GUESS_SECRET_KEY # Token expiration times must be strings compatible with the 'ms' library # Valid formats: '15m', '2h', '7d', '1000' (milliseconds as string) ACCESS_TOKEN_EXPIRY=15m REFRESH_TOKEN_EXPIRY=7d </code></pre> </div> <h3> 1.2 The Failing Implementation </h3> <p>The most logical approach—injecting the <code>ConfigService</code> and retrieving values as strings—fails compilation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// src/auth/auth.service.ts (The Code That Fails Compilation)</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Injectable</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/common</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">ConfigService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/config</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">JwtService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/jwt</span><span class="dl">'</span><span class="p">;</span> <span class="p">@</span><span class="nd">Injectable</span><span class="p">()</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AuthService</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">(</span> <span class="k">private</span> <span class="nx">jwtService</span><span class="p">:</span> <span class="nx">JwtService</span><span class="p">,</span> <span class="k">private</span> <span class="nx">configService</span><span class="p">:</span> <span class="nx">ConfigService</span><span class="p">,</span> <span class="p">)</span> <span class="p">{}</span> <span class="nf">getAccessToken</span><span class="p">(</span><span class="nx">payload</span><span class="p">:</span> <span class="kr">any</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// 🛑 ERROR: TypeScript throws TS2769 here</span> <span class="kd">const</span> <span class="nx">accessToken</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">jwtService</span><span class="p">.</span><span class="nf">sign</span><span class="p">(</span><span class="nx">payload</span><span class="p">,</span> <span class="p">{</span> <span class="na">expiresIn</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">ACCESS_TOKEN_EXPIRY</span><span class="dl">'</span><span class="p">),</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">accessToken</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> 2. The Diagnosis: Understanding TS2769 </h2> <p>The error message states: <em>"Type 'string' is not assignable to type 'number | string | undefined'"</em> or more specifically references the <code>StringValue</code> type.</p> <h3> Why This Happens </h3> <ol> <li> <strong>Generic String Type</strong>: Methods like <code>ConfigService.get()</code> return a generic JavaScript <code>string</code> type</li> <li> <p><strong>Specialized Union Type</strong>: The <code>jsonwebtoken</code> library (used internally by <code>@nestjs/jwt</code>) requires <code>expiresIn</code> to be either:</p> <ul> <li>A <code>number</code> (representing seconds)</li> <li>A <code>StringValue</code> type (a specialized string type matching the <code>ms</code> library format like '1h', '30s', '7d')</li> <li><code>undefined</code></li> </ul> </li> <li><p><strong>Type System Limitation</strong>: TypeScript cannot statically guarantee that your dynamic string matches the <code>ms</code> library format, so it conservatively prevents compilation</p></li> </ol> <h3> Understanding StringValue </h3> <p>The <code>StringValue</code> type represents strings that the <code>ms</code> library can parse:</p> <ul> <li> <strong>Valid examples</strong>: <code>'2 days'</code>, <code>'1d'</code>, <code>'10h'</code>, <code>'2.5h'</code>, <code>'30s'</code>, <code>'1000'</code> (ms as string)</li> <li> <strong>Invalid examples</strong>: <code>'tomorrow'</code>, <code>'next week'</code>, <code>'invalid'</code> </li> </ul> <h2> 3. Professional Solutions </h2> <h3> Solution 1: Type Assertion (Quick Fix) </h3> <p>The fastest solution uses explicit type assertion to bridge the type gap:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// src/auth/auth.service.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Injectable</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/common</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">ConfigService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/config</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">JwtService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/jwt</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">SignOptions</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">jsonwebtoken</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// ⭐ Import the type</span> <span class="p">@</span><span class="nd">Injectable</span><span class="p">()</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AuthService</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">(</span> <span class="k">private</span> <span class="nx">jwtService</span><span class="p">:</span> <span class="nx">JwtService</span><span class="p">,</span> <span class="k">private</span> <span class="nx">configService</span><span class="p">:</span> <span class="nx">ConfigService</span><span class="p">,</span> <span class="p">)</span> <span class="p">{}</span> <span class="nf">getTokens</span><span class="p">(</span><span class="nx">userId</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">email</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="p">{</span> <span class="na">sub</span><span class="p">:</span> <span class="nx">userId</span><span class="p">,</span> <span class="nx">email</span> <span class="p">};</span> <span class="c1">// Retrieve and assert the type</span> <span class="kd">const</span> <span class="nx">accessExpiry</span> <span class="o">=</span> <span class="p">(</span> <span class="k">this</span><span class="p">.</span><span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">ACCESS_TOKEN_EXPIRY</span><span class="dl">'</span><span class="p">)</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">15m</span><span class="dl">'</span> <span class="p">)</span> <span class="k">as</span> <span class="nx">SignOptions</span><span class="p">[</span><span class="dl">'</span><span class="s1">expiresIn</span><span class="dl">'</span><span class="p">];</span> <span class="c1">// 🚀 Type assertion</span> <span class="kd">const</span> <span class="nx">accessToken</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">jwtService</span><span class="p">.</span><span class="nf">sign</span><span class="p">(</span><span class="nx">payload</span><span class="p">,</span> <span class="p">{</span> <span class="na">expiresIn</span><span class="p">:</span> <span class="nx">accessExpiry</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">accessToken</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Pros</strong>: Simple, minimal code changes<br> <strong>Cons</strong>: Bypasses type safety, no runtime validation</p> <h3> Solution 2: Runtime Validation (Recommended for Production) </h3> <p>A more robust approach includes runtime validation to ensure the environment variable is valid:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// src/auth/auth.service.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Injectable</span><span class="p">,</span> <span class="nx">InternalServerErrorException</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/common</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">ConfigService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/config</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">JwtService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/jwt</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">SignOptions</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">jsonwebtoken</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">ms</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">ms</span><span class="dl">'</span><span class="p">;</span> <span class="p">@</span><span class="nd">Injectable</span><span class="p">()</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AuthService</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">(</span> <span class="k">private</span> <span class="nx">jwtService</span><span class="p">:</span> <span class="nx">JwtService</span><span class="p">,</span> <span class="k">private</span> <span class="nx">configService</span><span class="p">:</span> <span class="nx">ConfigService</span><span class="p">,</span> <span class="p">)</span> <span class="p">{}</span> <span class="k">private</span> <span class="nf">validateExpiry</span><span class="p">(</span><span class="nx">expiry</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="kr">string</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// This will throw if the format is invalid</span> <span class="nf">ms</span><span class="p">(</span><span class="nx">expiry</span><span class="p">);</span> <span class="k">return</span> <span class="nx">expiry</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">InternalServerErrorException</span><span class="p">(</span> <span class="s2">`Invalid JWT expiry format: </span><span class="p">${</span><span class="nx">expiry</span><span class="p">}</span><span class="s2">. Use formats like '15m', '7d', '2h'`</span> <span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">getTokens</span><span class="p">(</span><span class="nx">userId</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">email</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="p">{</span> <span class="na">sub</span><span class="p">:</span> <span class="nx">userId</span><span class="p">,</span> <span class="nx">email</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">accessExpiryRaw</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">ACCESS_TOKEN_EXPIRY</span><span class="dl">'</span><span class="p">)</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">15m</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">refreshExpiryRaw</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">REFRESH_TOKEN_EXPIRY</span><span class="dl">'</span><span class="p">)</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">7d</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// Validate before using</span> <span class="kd">const</span> <span class="nx">accessExpiry</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nf">validateExpiry</span><span class="p">(</span><span class="nx">accessExpiryRaw</span><span class="p">)</span> <span class="k">as</span> <span class="nx">SignOptions</span><span class="p">[</span><span class="dl">'</span><span class="s1">expiresIn</span><span class="dl">'</span><span class="p">];</span> <span class="kd">const</span> <span class="nx">refreshExpiry</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nf">validateExpiry</span><span class="p">(</span><span class="nx">refreshExpiryRaw</span><span class="p">)</span> <span class="k">as</span> <span class="nx">SignOptions</span><span class="p">[</span><span class="dl">'</span><span class="s1">expiresIn</span><span class="dl">'</span><span class="p">];</span> <span class="kd">const</span> <span class="nx">accessToken</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">jwtService</span><span class="p">.</span><span class="nf">sign</span><span class="p">(</span><span class="nx">payload</span><span class="p">,</span> <span class="p">{</span> <span class="na">expiresIn</span><span class="p">:</span> <span class="nx">accessExpiry</span><span class="p">,</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">refreshToken</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">jwtService</span><span class="p">.</span><span class="nf">sign</span><span class="p">(</span><span class="nx">payload</span><span class="p">,</span> <span class="p">{</span> <span class="na">expiresIn</span><span class="p">:</span> <span class="nx">refreshExpiry</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">accessToken</span><span class="p">,</span> <span class="nx">refreshToken</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Pros</strong>: Catches configuration errors early, fails safely<br> <strong>Cons</strong>: Slightly more code</p> <h3> Solution 3: Centralized Configuration with Type Safety </h3> <p>For larger applications, create a dedicated configuration service:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// src/config/jwt.config.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">registerAs</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/config</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">SignOptions</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">jsonwebtoken</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">ms</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">ms</span><span class="dl">'</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">validateExpiry</span><span class="p">(</span><span class="nx">expiry</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="kr">string</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="nf">ms</span><span class="p">(</span><span class="nx">expiry</span><span class="p">);</span> <span class="k">return</span> <span class="nx">expiry</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`Invalid JWT expiry: </span><span class="p">${</span><span class="nx">expiry</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nf">registerAs</span><span class="p">(</span><span class="dl">'</span><span class="s1">jwt</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">accessExpiry</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">ACCESS_TOKEN_EXPIRY</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">15m</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">refreshExpiry</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">REFRESH_TOKEN_EXPIRY</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">7d</span><span class="dl">'</span><span class="p">;</span> <span class="k">return</span> <span class="p">{</span> <span class="na">secret</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">JWT_SECRET</span><span class="p">,</span> <span class="na">accessExpiry</span><span class="p">:</span> <span class="nf">validateExpiry</span><span class="p">(</span><span class="nx">accessExpiry</span><span class="p">)</span> <span class="k">as</span> <span class="nx">SignOptions</span><span class="p">[</span><span class="dl">'</span><span class="s1">expiresIn</span><span class="dl">'</span><span class="p">],</span> <span class="na">refreshExpiry</span><span class="p">:</span> <span class="nf">validateExpiry</span><span class="p">(</span><span class="nx">refreshExpiry</span><span class="p">)</span> <span class="k">as</span> <span class="nx">SignOptions</span><span class="p">[</span><span class="dl">'</span><span class="s1">expiresIn</span><span class="dl">'</span><span class="p">],</span> <span class="p">};</span> <span class="p">});</span> <span class="c1">// Usage in service</span> <span class="p">@</span><span class="nd">Injectable</span><span class="p">()</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AuthService</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">(</span> <span class="k">private</span> <span class="nx">jwtService</span><span class="p">:</span> <span class="nx">JwtService</span><span class="p">,</span> <span class="p">@</span><span class="nd">Inject</span><span class="p">(</span><span class="nx">jwtConfig</span><span class="p">.</span><span class="nx">KEY</span><span class="p">)</span> <span class="k">private</span> <span class="nx">jwt</span><span class="p">:</span> <span class="nx">ConfigType</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">jwtConfig</span><span class="o">&gt;</span><span class="p">,</span> <span class="p">)</span> <span class="p">{}</span> <span class="nf">getTokens</span><span class="p">(</span><span class="nx">userId</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">email</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="p">{</span> <span class="na">sub</span><span class="p">:</span> <span class="nx">userId</span><span class="p">,</span> <span class="nx">email</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">accessToken</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">jwtService</span><span class="p">.</span><span class="nf">sign</span><span class="p">(</span><span class="nx">payload</span><span class="p">,</span> <span class="p">{</span> <span class="na">expiresIn</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">jwt</span><span class="p">.</span><span class="nx">accessExpiry</span><span class="p">,</span> <span class="c1">// ✅ Type-safe and validated</span> <span class="p">});</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">accessToken</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Pros</strong>: Centralized validation, fails at startup (not runtime), excellent type safety<br> <strong>Cons</strong>: More initial setup</p> <h2> 4. Alternative Import Paths </h2> <p>In NestJS projects, you can import <code>SignOptions</code> from multiple locations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Option 1: Direct from jsonwebtoken (most common)</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">SignOptions</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">jsonwebtoken</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// Option 2: From @nestjs/jwt (if re-exported in your version)</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">JwtSignOptions</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/jwt</span><span class="dl">'</span><span class="p">;</span> </code></pre> </div> <p>Both approaches work, but importing from <code>jsonwebtoken</code> directly is more explicit and version-agnostic.</p> <h2> 5. Testing Your Configuration </h2> <p>Always validate your JWT configuration during application bootstrap:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// src/main.ts</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">bootstrap</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">NestFactory</span><span class="p">.</span><span class="nf">create</span><span class="p">(</span><span class="nx">AppModule</span><span class="p">);</span> <span class="c1">// Test JWT configuration on startup</span> <span class="kd">const</span> <span class="nx">configService</span> <span class="o">=</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">ConfigService</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">accessExpiry</span> <span class="o">=</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">ACCESS_TOKEN_EXPIRY</span><span class="dl">'</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`✅ JWT Access Token Expiry: </span><span class="p">${</span><span class="nx">accessExpiry</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="k">await</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="mi">3000</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> Conclusion </h2> <p>The TS2769 error when configuring JWT expiration times is a common challenge when integrating dynamic configuration with strict TypeScript type definitions. The solutions presented here range from quick type assertions to comprehensive runtime validation:</p> <ul> <li> <strong>Use Solution 1</strong> for rapid prototyping or simple applications</li> <li> <strong>Use Solution 2</strong> for production applications requiring runtime safety</li> <li> <strong>Use Solution 3</strong> for enterprise applications with complex configuration needs</li> </ul> <p>All approaches use type assertion (<code>as SignOptions['expiresIn']</code>) to satisfy TypeScript's compiler while maintaining the flexibility of environment-based configuration. The key difference lies in when and how you validate the configuration values.</p> <h3> Key Takeaways </h3> <ol> <li>Type assertions bypass compile-time safety for runtime flexibility</li> <li>Always validate environment variables that affect security (like JWT expiration)</li> <li>Fail early (at startup) rather than during request handling</li> <li>Use the <code>ms</code> library's validation to ensure format correctness</li> <li>Document valid formats in your <code>.env.example</code> files</li> </ol> <p>By combining type assertions with proper runtime validation, you maintain both TypeScript's type safety benefits and the flexibility required for production deployments.</p> webdev jwt nestjs node