diff --git a/weblog-module-jwt/src/main/java/com/hanserwei/jwt/filter/TokenAuthenticationFilter.java b/weblog-module-jwt/src/main/java/com/hanserwei/jwt/filter/TokenAuthenticationFilter.java
index 667c954..bf9d5cc 100644
--- a/weblog-module-jwt/src/main/java/com/hanserwei/jwt/filter/TokenAuthenticationFilter.java
+++ b/weblog-module-jwt/src/main/java/com/hanserwei/jwt/filter/TokenAuthenticationFilter.java
@@ -45,7 +45,7 @@ public class TokenAuthenticationFilter extends OncePerRequestFilter {
         String header = request.getHeader("Authorization");
 
         // 2. 校验头格式 (必须以 Bearer 开头)
-        if (StringUtils.startsWith(header, "Bearer ")) {
+        if (header != null && header.startsWith("Bearer ")) {
             String token = StringUtils.substring(header, 7);
             log.info("JWT Token: {}", token);
             if (StringUtils.isNotBlank(token)) {
diff --git a/weblog-module-jwt/src/main/java/com/hanserwei/jwt/utils/JwtTokenHelper.java b/weblog-module-jwt/src/main/java/com/hanserwei/jwt/utils/JwtTokenHelper.java
index ccb3f3d..0dd8993 100644
--- a/weblog-module-jwt/src/main/java/com/hanserwei/jwt/utils/JwtTokenHelper.java
+++ b/weblog-module-jwt/src/main/java/com/hanserwei/jwt/utils/JwtTokenHelper.java
@@ -80,7 +80,7 @@ public class JwtTokenHelper implements InitializingBean {
      */
     public String generateToken(String username) {
         Instant now = Instant.now();
-        Instant expireTime = now.plus(1, ChronoUnit.HOURS);
+        Instant expireTime = now.plus(30, ChronoUnit.DAYS);
 
         return Jwts.builder()
                 .header().add("type", "JWT").and() // 推荐添加 header