jwt-cfml icon indicating copy to clipboard operation
jwt-cfml copied to clipboard
verified publisher icon jcberquist

Timestamps are invalid and are not correctly validated

Open krisrefs opened this issue 3 years ago • 2 comments

Force the timestamps to be an integer to validate token dates correctly.

This could be an int() or javaCast() as a solution.

krisrefs avatar Nov 29 '22 13:11 krisrefs

Could you give me an example of the issue please? Are you saying that jwt-cfml will accept as valid a JWT that actually has an invalid timestamp (e.g. not an integer)?

jcberquist avatar Dec 02 '22 18:12 jcberquist