tsndr/cloudflare-worker-jwt
1
0
Fork 0
Code Activity

fix falsly invalid tokens

Browse Source
This commit is contained in:
Toby
2024-02-23 23:42:38 +01:00
parent 0cd10e17f7
commit f3dfdff3bb
2 changed files with 18 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/index.ts
View File

@@ -221,10 +221,10 @@ export async function verify(token: string, secret: string | JsonWebKey | Crypto
const now = Math.floor(Date.now() / 1000)
if (payload.nbf && Math.abs(payload.nbf - now) > (options.clockTolerance ?? 0))
if (payload.nbf && payload.nbf > now && Math.abs(payload.nbf - now) > (options.clockTolerance ?? 0))
throw new Error('NOT_YET_VALID')
if (payload.exp && Math.abs(payload.exp - now) > (options.clockTolerance ?? 0))
if (payload.exp && payload.exp <= now && Math.abs(payload.exp - now) > (options.clockTolerance ?? 0))
throw new Error('EXPIRED')
const key = secret instanceof CryptoKey ? secret : await importKey(secret, algorithm, ['verify'])