diff --git a/zod_bank/settings.py b/zod_bank/settings.py
index 5de2499..f8e5492 100644
--- a/zod_bank/settings.py
+++ b/zod_bank/settings.py
@@ -56,7 +56,14 @@ if ENV in ['dev', 'qa', 'stage']:
         # Add more trusted origins as needed
     ]
 if ENV == "prod":
-    CORS_ALLOWED_ORIGINS = []
+    CORS_ALLOWED_ORIGINS = [
+        # backend base url
+        "https://prod-api.zodqaapp.com/",
+
+        # frontend url
+        "https://zod-prod.zodqaapp.com/",
+        # Add more trusted origins as needed
+    ]
 
 # allow all host
 ALLOWED_HOSTS = ['*']
@@ -137,7 +144,7 @@ REST_FRAMEWORK = {
 }
 # define jwt token
 SIMPLE_JWT = {
-    'ACCESS_TOKEN_LIFETIME': timedelta(hours=0, minutes=0, seconds=59, microseconds=999999),
+    'ACCESS_TOKEN_LIFETIME': timedelta(hours=2, minutes=59, seconds=59, microseconds=999999),
     'REFRESH_TOKEN_LIFETIME': timedelta(hours=71, minutes=59, seconds=59, microseconds=999999),
 
 }