Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set leeway on Datetime Claims creation #2182

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

Set leeway on Datetime Claims creation #2182

wants to merge 1 commit into from

Conversation

alessandrodolci
Copy link

Currently, the leeway property of Datetime claims is set after the instance creation, calling the relative setter method. This could cause validation errors inside the validateCreate method of the IssuedAt class, in the case where an instance gets created using a value from an existing token, due to the leeway not being considered.

This has caused some problems on one of our services that was running on a pool of different hosts which happened to have their system clocks out of sync. We solved the issue by fixing our NTP configurations, but we'd appreciate the leeway property to be correctly handled by the library.
The problem seems to be also mentioned here.

We really appreciate your effort with this project and we hope you find this helpful. I'm always available if you need me to further expand on this.

Have a nice weekend!

ArthurYdalgo added a commit to ArthurYdalgo/jwt-auth that referenced this pull request Jun 1, 2023
@ArthurYdalgo
Set leeway on Datetime Claims creation
cdd9dc5 
Copied from this PR:
tymondesigns#2182
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@alessandrodolci