JWTExpired: "exp" claim timestamp check failed (with a fresh JWT token) #585

calboru · 2022-09-09T19:38:23Z

calboru
Sep 9, 2022

Hi,
I get "JWTExpired: "exp" claim timestamp check failed" error when validating JWT token on server side.
CODE

  const jwks = jose.createRemoteJWKSet(
    new URL("https://api.openlogin.com/jwks")
  );

  // Verify the JWT using Web3Auth's JWKS
  const jwtDecoded = await jose.jwtVerify(idToken, jwks, {
    algorithms: ["ES256"],
  });

JWT Token:

eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IlRZT2dnXy01RU9FYmxhWS1WVlJZcVZhREFncHRuZktWNDUzNU1aUEMwdzAifQ.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.uVoYs8mo3e51mPEHV2UlzYgvQY7zlDvDo-NI0bVcRC8pSp8Z2SkfYvpSov9ITqJL5nBFR6Gp93B-LVyJ0G4m-A

shahbaz17 · 2022-09-09T19:54:27Z

shahbaz17
Sep 9, 2022
Maintainer

parsedToken.idToken is the idToken you receive in getUserInfo? Or is it parsed?

5 replies

calboru Sep 9, 2022
Author

Yes the idToken from getUserInfo

calboru Sep 9, 2022
Author

By the way this is social login.

calboru Sep 12, 2022
Author

Hi Shahbaz, as of today it is still not working. Now I am being forwarded to the support chat screen.

calboru Sep 12, 2022
Author

I had to clear Safari's (Iphone) cache. Now it is working properly. Why?

shahbaz17 Sep 13, 2022
Maintainer

Maybe it was using the old idToken that has already expired.

shahbaz17 · 2022-09-13T08:39:55Z

shahbaz17
Sep 13, 2022
Maintainer

I am marking this resolved, as the code you shared was accurate and can be used to verify the id_token.

0 replies

grabbou · 2023-03-05T08:53:16Z

grabbou
Mar 5, 2023

Unfortunately, this started happening today for me too. The login was successful, but the expired token was returned. Everything worked till yesterday, together with new token being issued on subsequent logins. No code changed since then. Anyway to debug this?

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Web3Auth

JWTExpired: "exp" claim timestamp check failed (with a fresh JWT token) #585

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 3 comments 5 replies

{{title}}

{{title}}

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{title}}

{{title}}

{{title}}

Select a reply

Web3Auth

JWTExpired: "exp" claim timestamp check failed (with a fresh JWT token) #585

calboru Sep 9, 2022

Hi, I get "JWTExpired: "exp" claim timestamp check failed" error when validating JWT token on server side. CODE

JWT Token:

Replies: 3 comments · 5 replies

shahbaz17 Sep 9, 2022 Maintainer

calboru Sep 9, 2022 Author

calboru Sep 9, 2022 Author

calboru Sep 12, 2022 Author

calboru Sep 12, 2022 Author

shahbaz17 Sep 13, 2022 Maintainer

shahbaz17 Sep 13, 2022 Maintainer

grabbou Mar 5, 2023

calboru
Sep 9, 2022

Hi,
I get "JWTExpired: "exp" claim timestamp check failed" error when validating JWT token on server side.
CODE

Replies: 3 comments 5 replies

shahbaz17
Sep 9, 2022
Maintainer

calboru Sep 9, 2022
Author

calboru Sep 9, 2022
Author

calboru Sep 12, 2022
Author

calboru Sep 12, 2022
Author

shahbaz17 Sep 13, 2022
Maintainer

shahbaz17
Sep 13, 2022
Maintainer

grabbou
Mar 5, 2023