From 4f5a08255bf2d8ceb9c4c5eab3a94e7e5a4ab536 Mon Sep 17 00:00:00 2001
From: metametadata <yuri.govor@gmail.com>
Date: Mon, 17 Jul 2017 19:30:37 +0300
Subject: [PATCH] Stop rejecting tokens with future :iat values.

Partially addresses #39.
---
 src/buddy/sign/jwt.clj        | 3 ---
 test/buddy/sign/jwt_tests.clj | 8 --------
 2 files changed, 11 deletions(-)

diff --git a/src/buddy/sign/jwt.clj b/src/buddy/sign/jwt.clj
index b4e0ea7..6d76421 100644
--- a/src/buddy/sign/jwt.clj
+++ b/src/buddy/sign/jwt.clj
@@ -41,9 +41,6 @@
     (when (and (:nbf claims) (< now (:nbf claims)))
       (throw (ex-info (format "Token is not yet valid (%s)" (:nbf claims))
                       {:type :validation :cause :nbf})))
-    (when (and (:iat claims) (< now (:iat claims)))
-      (throw (ex-info (format "Token is from the future (%s)" (:iat claims))
-                      {:type :validation :cause :iat})))
     (when (and (:iat claims) (number? max-age) (> (- now (:iat claims)) max-age))
       (throw (ex-info (format "Token is older than max-age (%s)" max-age)
                       {:type :validation :cause :max-age})))
diff --git a/test/buddy/sign/jwt_tests.clj b/test/buddy/sign/jwt_tests.clj
index 9dad8dc..0ef55d0 100644
--- a/test/buddy/sign/jwt_tests.clj
+++ b/test/buddy/sign/jwt_tests.clj
@@ -101,14 +101,6 @@
             signed    (make-jwt-fn candidate)]
         (unsign-exp-succ signed candidate)))
 
-    (testing ":iat claim validation"
-      (let [candidate {:foo "bar" :iat 10}
-            signed    (make-jwt-fn candidate)]
-        (unsign-exp-fail signed :iat {:now 0})
-        (unsign-exp-fail signed :iat {:now 9})
-        (unsign-exp-succ signed candidate {:now 10})
-        (unsign-exp-succ signed candidate {:now 11})))
-
     (testing ":exp claim validation"
       (let [candidate {:foo "bar" :exp 10}
             signed    (make-jwt-fn candidate)]