This is in the firmware changelog for version 2.1.1: [Core] Sessions now expire after 1 day
Athom made using the bearer token unusable for the sake of “security”. Suggested solution for your usecase was to use the webhook trigger card from the logica cards. This however exposes an unprotected endpoint where only the URL itself can hold some sort of “token”. The full URL would still be logged by webservers however (unlike using a token with the authorization header) and is therefor actually less secure.
I switched to using MQTT triggers over a secured MQTT server.