shqzk (shqzk) asked a question.
using authentication flow I got back the id token. To validate the id token in Angular application i'm expecting nbf in id token but not able to see one, Tried adding claims to the application by following the below link but no luck. Could you please advise me on this.
https://developer.okta.com/docs/guides/customize-tokens-returned-from-okta/add-custom-claim/
https://developer.okta.com/docs/reference/okta-expression-language/
{
"id_token": "eyJraWQiOiJFemF6bVZWbnd0TUpUNEFveFVtT0dILWJ0Y2VUVFM3djBYcEJuMm5ZZ2VjIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiIwMHU0ZWo3Z2RwdVFKUFFtdTR4NiIsIm5hbWUiOiJGcmFuayBHZW9yZ2UiLCJlbWFpbCI6ImZyYW5rLmdlb3JnZUBibGFja3JvY2suY29tIiwidmVyIjoxLCJpc3MiOiJodHRwczovL2JsYWNrcm9ja2ZvcmVzaWdodC5va3RhLmNvbS9vYXV0aDIvYXVzNGVrbXJ4eGRjYmNuR280eDYiLCJhdWQiOiIwb2E0ZWw2OGNUQXRuU1FTUDR4NiIsImlhdCI6MTU4NTA4NTkzNCwiZXhwIjoxNTg1MDg5NTM0LCJqdGkiOiJJRC5nU0M1eEpyQW9ubHJNMDZuYU1JTVVsclZkV3h4SGk0RmhoUHdtdVVneU9RIiwiYW1yIjpbInB3ZCJdLCJpZHAiOiIwMG80Y2tqeXlsQkRrM2lndTR4NiIsInByZWZlcnJlZF91c2VybmFtZSI6ImZyYW5rLmdlb3JnZUBibGFja3JvY2suY29tIiwiYXV0aF90aW1lIjoxNTg1MDg1OTMyLCJhdF9oYXNoIjoiemV6dlpKM2E1NEViS0xRa21teUl2QSJ9.WjTgcm9Iyx7tAq7QR88R5isf5tAoaFxv4bmclQnnH8VrehzSTX69jOjuspCO1b-pRW1IZtLOE-eo5X8IqnvVx7asdekEN57k1zTk-q9h1Pna3AIjw2LT0A0T9ltogQTH5dPr4P481oaZscioLN6ZMK37aQqLFbF7rDPDcYlmX6zkPtTkD_IJHOR5ngbVLWmG-6RTj9W8H96oKv4l8s-YJyjEh8DqtJ7GtHjerrgvx2ZvXFIEYGyZ5yAmaoL00XqR_Lql6dWqCaz3Rglto0sH5NKQ-OhP05YDgSsNH3yTn9qW5RTTrEs9-ZXak37dPW7bUVKEizAYno2miU-SWNN-0Q",
"access_token": "eyJraWQiOiJFemF6bVZWbnd0TUpUNEFveFVtT0dILWJ0Y2VUVFM3djBYcEJuMm5ZZ2VjIiwiYWxnIjoiUlMyNTYifQ.eyJ2ZXIiOjEsImp0aSI6IkFULmkxQU5pOERxQWhrUjgtNmJMWEV3Ync4UHMzSWhCTDlMTXl6eUVtM1BBOUEiLCJpc3MiOiJodHRwczovL2JsYWNrcm9ja2ZvcmVzaWdodC5va3RhLmNvbS9vYXV0aDIvYXVzNGVrbXJ4eGRjYmNuR280eDYiLCJhdWQiOiIwb2E0ZWw2OGNUQXRuU1FTUDR4NiIsImlhdCI6MTU4NTA4NTkzMywiZXhwIjoxNTg1MDg3NzMzLCJjaWQiOiIwb2E0ZWw2OGNUQXRuU1FTUDR4NiIsInVpZCI6IjAwdTRlajdnZHB1UUpQUW11NHg2Iiwic2NwIjpbIm9wZW5pZCIsInByb2ZpbGUiLCJlbWFpbCJdLCJzdWIiOiJmcmFuay5nZW9yZ2VAYmxhY2tyb2NrLmNvbSJ9.PPkxDS7Xu4eot0eRZl6iZdCZldaVZiau7IY9h89v4GVM97Jvdxgu9QPc9Omgyl3Z2pFUvTchbEWdir2y72Lwo4c--GVPyS60PL9Lo0bh9LSPBNN-95uclpLTmOSbzXfD5cJqWVNYMfUyz1reW1noUenagG-oUtGur4H7_26gJu7lkMqSJKOPljyI_dPM565iK2rknztlOwfgsxP20du1nqB74DR4HHnk2W-U83BbM_7tJn4e0b1QuzTuh_A4blMFjVykLMJjxYTzi0VmRr0m7rnHS21TSJeT2E7UmrCqzc1Ui1Fk01N8JvgU73BpD_R1CkoLGyOi_-4ylmT5cEdx5w",
"token_type": "Bearer",
"scope": "openid profile email",
"profile": {
"sub": "00u4ej7gdpuQJPQmu4x6",
"name": "Frank George",
"email": "frank.george@blackrock.com",
"ver": 1,
"jti": "ID.gSC5xJrAonlrM06naMIMUlrVdWxxHi4FhhPwmuUgyOQ",
"amr": [
"pwd"
],
"idp": "00o4ckjyylBDk3igu4x6",
"preferred_username": "frank.george@blackrock.com",
"auth_time": 1585085932,
"locale": "en-US",
"given_name": "Frank",
"family_name": "George",
"zoneinfo": "America/Los_Angeles",
"updated_at": 1584646233,
"email_verified": true
},
"expires_at": 1585087734
}
Hey there! Sorry for the lack of response here on the Discussions forum. If you’re still looking for an answer, I would recommend checking out our Developer resources, including the Developer Forum (https://devforum.okta.com/) and documentation. If you are unable to find the solutions you're looking for there, we would encourage you to contact our dedicated Developer Support team at developers@okta.com, and they will be able to help you out.
Better late than never...for the next person looking for an answer to this:
Okta does not support the nbf claim. You can use this to create tokens before they are actually valid. Our tokens are always valid as soon as they are created. We also reserve the claim name so that noone can insert their own custom claim with that name.