Closed mhamann closed 6 years ago
When checking the validity of OAuth tokens, the gateway should ensure that it checks the expiration time after verifying the signature. Tokens whose expiration time has passed should be rejected.
When checking the validity of OAuth tokens, the gateway should ensure that it checks the expiration time after verifying the signature. Tokens whose expiration time has passed should be rejected.