Skip to content

fix: use numeric JWT claims instead of ISO-8601 #4992

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

fix: use numeric JWT claims instead of ISO-8601 #4992

wants to merge 3 commits into from
+63 −72

Conversation

paullatzelsperger
Copy link
Member

What this PR changes/adds

this PR changes the use of ISO-8601 strings as temporal JWT claims to be numeric date values.

Why it does that

RFC 7519 requires them to be NumericDate values, i.e. Epoch seconds

Further notes

The culprit is the Nimbus library, which fails to parse JSON Web tokens where the nbf, exp and iat claims are not numeric.

Who will sponsor this feature?

Please @-mention the committer that will sponsor your feature.

Linked Issue(s)

Closes #4991

Please be sure to take a look at the contributing guidelines and our etiquette for pull requests.

@paullatzelsperger paullatzelsperger added bug Something isn't working breaking-change Will require manual intervention for version update labels May 16, 2025
@paullatzelsperger paullatzelsperger force-pushed the fix/use_temporal_values branch from 56dce0d to 7823365 Compare May 16, 2025 08:13
@paullatzelsperger paullatzelsperger requested a review from ndr-brt May 16, 2025 08:36
@paullatzelsperger paullatzelsperger marked this pull request as ready for review May 16, 2025 08:37
@paullatzelsperger paullatzelsperger force-pushed the fix/use_temporal_values branch from 06cb8fd to 4c3be39 Compare May 16, 2025 08:54
@paullatzelsperger paullatzelsperger force-pushed the fix/use_temporal_values branch from 4c3be39 to 62f6ff6 Compare May 16, 2025 10:01
ndr-brt
ndr-brt approved these changes May 20, 2025
View reviewed changes
Copy link
Member

@ndr-brt ndr-brt left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All my tests have been positive, let's get this merged

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ndr-brt ndr-brt ndr-brt approved these changes

@bscholtes1A bscholtes1A Awaiting requested review from bscholtes1A bscholtes1A is a code owner

@jimmarino jimmarino Awaiting requested review from jimmarino jimmarino is a code owner

Assignees
No one assigned
Labels
breaking-change Will require manual intervention for version update bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

JWTs use wrong data type for temporal claims
2 participants
@paullatzelsperger @ndr-brt