diff --git a/app/authenticators/jwt-resolved.js b/app/authenticators/jwt-resolved.js
index a6884ec..1417236 100644
--- a/app/authenticators/jwt-resolved.js
+++ b/app/authenticators/jwt-resolved.js
@@ -1,3 +1,4 @@
+// Note: this is here for user lockout authentication
 import Ember from 'ember';
 import JwtTokenAuthenticator from 'simple-auth-token/authenticators/jwt';
 
diff --git a/config/environment.js b/config/environment.js
index 066e82f..d03d0ff 100644
--- a/config/environment.js
+++ b/config/environment.js
@@ -28,8 +28,8 @@ module.exports = function(environment) {
       authorizationPrefix: 'Bearer ',
       authorizationHeaderName: 'Authorization',
       refreshAccessTokens: true,
-      timeFactor: 1000,
-      refreshLeeway: 300,
+      timeFactor: 1000, // 1000 ms/s; JWT returned in unix time seconds
+      refreshLeeway: 1800, // (60 s/min) * (30 min) = 1800 s
     },
     contentSecurityPolicy: {
       'default-src': "'none'",