lib-oauth2-jwt: Remove 'nbf < iat' check, as it's not mandated by RFC7519, and not...

author s3lph <5564491+s3lph@users.noreply.github.com>

Mon, 7 Jun 2021 22:35:13 +0000 (00:35 +0200)

committer Aki Tuomi <aki.tuomi@open-xchange.com>

Thu, 26 Aug 2021 07:38:11 +0000 (10:38 +0300)
author s3lph <5564491+s3lph@users.noreply.github.com>
Mon, 7 Jun 2021 22:35:13 +0000 (00:35 +0200)
committer Aki Tuomi <aki.tuomi@open-xchange.com>
Thu, 26 Aug 2021 07:38:11 +0000 (10:38 +0300)
diff --git a/src/lib-oauth2/oauth2-jwt.c b/src/lib-oauth2/oauth2-jwt.c

index 8f3eca41df8c982bfb7d0af82554fb20198c6536..ec7ad46d4a96cebd724a22757f5998e97de7f843 100644 (file)
--- a/src/lib-oauth2/oauth2-jwt.c
+++ b/src/lib-oauth2/oauth2-jwt.c
@@ -394,8 +394,7 @@ oauth2_jwt_body_process(const struct oauth2_settings *set, const char *alg,
         }
  
         /* ensure token dates are not conflicting */
-       if (nbf < iat ||
-           exp < iat ||
+       if (exp < iat ||
             exp < nbf) {
                 *error_r = "Token time values are conflicting";
                 return -1;
author	s3lph <5564491+s3lph@users.noreply.github.com>
	Mon, 7 Jun 2021 22:35:13 +0000 (00:35 +0200)
committer	Aki Tuomi <aki.tuomi@open-xchange.com>
	Thu, 26 Aug 2021 07:38:11 +0000 (10:38 +0300)