We recommend you use one of these libraries Most modern languages have JWT libraries available. Repeatedly perform identical actions (e.g., clicking the same button). This can be useful when all or part of a page is refreshed or when it is valid for a user to Judicious use of the time-based claims allows for replays within a limited window. The JWT specification suggests no more than a few minutes. You should use a little leeway when processing time-based claims, as clocks may drift apart. In Bitbucket's case the sub claim is associated with the connection key, as shown in the following example. This is the user associated with the relevant action. A custom Atlassian claim that prevents URL tampering. It contains the UTC Unix time after which you should no longer accept this token. Requirements around this claim but it does not make sense for it to be significantly in the future.Īlso, significantly old issued-at times may indicate the replay of suspiciously old tokens.Įxpiration time. Contains the UTC Unix time at which this token was issued. If the app is the calling application: the app key specified in the app descriptor.This is the clientKey that you receive in the installed callback.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |