Password-less login token duration options

Separate duration setting for campaign-generated tokens

Please add a separate config setting to control the duration for tokens generated by campaigns. Campaign-generated tokens often require a relatively long lifetime (30 to 60 days) to allow time for the campaign recipients to receive the communications. This is especially true when we send communication via postal mail.

Ideally this would be a campaign-level setting, but an account level setting would be acceptable.

Add support for values less than one day

A more typical password-less login flow where the token is requested by a user on the website should produce in a token that lasts for a very short duration, just long enough for the user to receive and open the email.

I would suggest adding a few options less than 1 day. I think we would chose something like 1 hour.