Implement the ability to define a leeway when validating JWT tokens. #218
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Hello @otetard! Thanks for updating the PR. Cheers ! There are no PEP8 issues in this Pull Request. 🍻 Comment last updated on January 03, 2019 at 10:56 Hours UTC |
otetard
force-pushed
the
feat/implement-leeway-in-jwt
branch
5 times, most recently
from
ce04678 to
4ff8ce4
Compare
vimalloc
requested changes
Jan 2, 2019
|
This commit looks good, thanks for making it! I added a few minor nit picks in the code, if you don't mind taking a look at those. Could you also add that new option to the documentation here: https://github.com/vimalloc/flask-jwt-extended/blob/master/docs/options.rst Thanks! |
otetard
force-pushed
the
feat/implement-leeway-in-jwt
branch
from
4ff8ce4 to
b4dd52d
Compare
|
Thanks @vimalloc for your review! I’ve updated my PR to take your comments into account. |
guptarohit
suggested changes
Jan 3, 2019
PyJWT library implement a way to define a “leeway” for time validations. > PyJWT also supports the leeway part of the expiration time > definition, which means you can validate a expiration time which is > in the past but not very far. For example, if you have a JWT payload > with a expiration time set to 30 seconds after creation but you know > that sometimes you will process it after 30 seconds, you can set a > leeway of 10 seconds in order to have some margin: > > https://github.com/jpadilla/pyjwt/blob/master/docs/usage.rst This is implemented as an optional configuration setting, `JWT_DECODE_LEEWAY`.
otetard
force-pushed
the
feat/implement-leeway-in-jwt
branch
from
b4dd52d to
7617540
Compare
vimalloc
approved these changes
Jan 3, 2019
|
I released this in version 3.15.0, it should be showing up on pypi soon. Thanks for contributing! 👍 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
PyJWT library implement a way to define a “leeway” for time
validations.
This is implemented as an optional configuration setting,
JWT_DECODE_LEEWAY.