[Openid-specs-fapi] Issue #695: iat, nbf clause readability (openid/fapi)
dgtonge
issues-reply at bitbucket.org
Wed May 15 13:52:47 UTC 2024
New issue 695: iat, nbf clause readability
https://bitbucket.org/openid/fapi/issues/695/iat-nbf-clause-readability
Dave Tonge:
14\. to accommodate for clock offsets, shall accept JWTs with an iat or nbf time up to 10 seconds in the future, however should reject JWTs with an iat or nbf of 60 seconds or greater in the future.
\[Rifaat\] What should the AS do when iat/nbf is greater than 10 but less than 60?
Responsible: Dave Tonge
More information about the Openid-specs-fapi
mailing list