Added in a the recommended check for validating the time the JWT was issued against the expiry time - probably to deal with machines with different clocks.
Added in the recommended check to ensure there is an algorithm provided in the jose header, though this does not check the signing thumbprint against those that can be read from the well known endpoint.
Added in a the recommended check for validating the time the JWT was issued against the expiry time - probably to deal with machines with different clocks.
Added in the recommended check to ensure there is an algorithm provided in the jose header, though this does not check the signing thumbprint against those that can be read from the well known endpoint.