We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 8da0af1 commit 055752cCopy full SHA for 055752c
src/jwt-verification.ts
@@ -33,6 +33,7 @@ export async function verifyJwt(token: string): Promise<AppJWTPayload> {
33
const { payload } = await jwtVerify(bearerToken, JWKS, {
34
issuer: env.SSO_ISSUER,
35
audience: env.JWT_AUDIENCE,
36
+ clockTolerance: 60, // 60 seconds clock tolerance for clock skew between issuer and verifier
37
})
38
if (!payload.email || !payload.name || !payload.sub) {
39
throw new Error('JWT missing required claims')
0 commit comments