这是indexloc提供的服务,不要输入任何密码
Skip to content

add some leeway for checking JWT expiry, to account for clock skew #2109

New issue
New issue
Closed
Closed
add some leeway for checking JWT expiry, to account for clock skew#2109
Assignees
codingkarthik
Labels
c/serverRelated to serverk/enhancementNew feature or improve an existing featurep/highcandidate for being included in the upcoming sprint
@BradleyHow

Description

@BradleyHow
BradleyHow
opened on May 2, 2019

Description :

I have an error cause by a clock skew of one second between my hasura server and my JWT service (Firebase) . I think that it beneficial to allow a little bit of leeway in the validation of the iat of the token to let this kind of situation.

Error message :

{name: "FormatedError", message: "Unknown error", originalError: "cannot start as connection_init failed with : Could not verify JWT: JWTIssuedAtFuture"}

Solution :

Implementers MAY provide for some small leeway, usually no more than
a few minutes, to account for clock skew. Use of this claim should be OPTIONAL.

Metadata

Metadata

Assignees

Labels

c/serverRelated to serverk/enhancementNew feature or improve an existing featurep/highcandidate for being included in the upcoming sprint

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions