By default, Sanctum tokens hardly ever expire and should only be invalidated by revoking the token. Nevertheless, if you desire to to configure an expiration time to your application's API tokens, you could possibly achieve this by way of the expiration configuration solution described in your software's sanctum configuration https://www.fiverr.com/advisortruerevi/be-your-professional-php-developer-to-build-a-custom-website