Skip to content
This repository has been archived by the owner on Feb 27, 2023. It is now read-only.

jwt.ValidateWithLeeway: Return error if IssuedAt (iat) is in the future #217

Merged
merged 1 commit into from
Feb 4, 2019
Merged

jwt.ValidateWithLeeway: Return error if IssuedAt (iat) is in the future #217

merged 1 commit into from
Feb 4, 2019

Conversation

evanj
Copy link
Contributor

@evanj evanj commented Feb 3, 2019

Add a check to ValidateWithLeeway that the IssuedAt (iat) field is in the
past. This field is optional, and this check is not required by the RFC,
but seems like a reasonable check. See:
https://tools.ietf.org/html/rfc7519#section-4.1.6

Fixes #216

Add a check to ValidateWithLeeway that the IssuedAt (iat) field is in the
past. This field is optional, and this check is not required by the RFC,
but seems like a reasonable check. See:
https://tools.ietf.org/html/rfc7519#section-4.1.6

Fixes #216
@CLAassistant
Copy link

CLAassistant commented Feb 3, 2019

CLA assistant check
All committers have signed the CLA.

@csstaub csstaub merged commit 018cad1 into square:v2 Feb 4, 2019
@csstaub
Copy link
Collaborator

csstaub commented Feb 4, 2019

Thanks @evanj! I'll let this sit for a bit and then make a release with the change.

@evanj evanj deleted the iat-future branch February 4, 2019 20:28
evanj added a commit to evanj/googlesignin that referenced this pull request Feb 4, 2019
... or it will when the next version of the library is released. See:
square/go-jose#217
evanj pushed a commit to evanj/googlesignin that referenced this pull request Feb 4, 2019
... or it will when the next version of the library is released. See:
square/go-jose#217
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants