Restrict lcobucci/jwt to the 4.0.x branch to ensure backward compat

Author: Sephster

composer.json

@@ -7,7 +7,7 @@
         "php": "^7.2 || ^8.0",
         "ext-openssl": "*",
         "league/event": "^2.2",
-        "lcobucci/jwt": "^3.4 || ^4.1",
+        "lcobucci/jwt": "^3.4 || ~4.0.0",
         "psr/http-message": "^1.0.1",
         "defuse/php-encryption": "^2.2.1",
         "ext-json": "*"

src/AuthorizationValidators/BearerTokenValidator.php

@@ -16,7 +16,7 @@
 use Lcobucci\JWT\Signer\Key\LocalFileReference;
 use Lcobucci\JWT\Signer\Rsa\Sha256;
 use Lcobucci\JWT\Validation\Constraint\SignedWith;
-use Lcobucci\JWT\Validation\Constraint\StrictValidAt;
+use Lcobucci\JWT\Validation\Constraint\ValidAt;
 use Lcobucci\JWT\Validation\RequiredConstraintsViolated;
 use League\OAuth2\Server\CryptKey;
 use League\OAuth2\Server\CryptTrait;
@@ -74,7 +74,7 @@ private function initJwtConfiguration()
         );
 
         $this->jwtConfiguration->setValidationConstraints(
-            new StrictValidAt(new SystemClock(new DateTimeZone(\date_default_timezone_get()))),
+            new ValidAt(new SystemClock(new DateTimeZone(\date_default_timezone_get()))),
             new SignedWith(new Sha256(), LocalFileReference::file($this->publicKey->getKeyPath()))
         );
     }