Closed timkuijsten closed 9 years ago
Am I right to conclude that replay attacks are not prevented but only mitigated to a window of 60 seconds?
You can pass a timeSkew option to change from the 60 seconds.
timeSkew
Ic, still mitigated, not prevented, but proper prevention would cause a round trip with the server first I guess.
Am I right to conclude that replay attacks are not prevented but only mitigated to a window of 60 seconds?