[JWT] The token expiration date time for Asymmetric and Symmetric does not work

Forge Component
(8)
Published on 2018-10-10 by João Almeida
8 votes
Published on 2018-10-10 by João Almeida

The token expiration date time for Asymmetric and Symmetric does not work.

The token is still valid even after the specified expiration date time has passed.

Hi Meng Wye, Lavin Lim , can you give an example?

João Almeida wrote:

Hi Meng Wye, Lavin Lim , can you give an example?

Using the jwt demo, set an an expiry date time to 30 seconds after system time. Read the sign token in the jwt demo by checking the lifetime verification and it will still flag as valid.


It will only flagged as invalid when system time has passed about 5 mins after the expiry date time set in the token.