{"id":524,"date":"2011-07-11T22:03:43","date_gmt":"2011-07-12T05:03:43","guid":{"rendered":"https:\/\/self-issued.info\/?p=524"},"modified":"2011-10-31T21:57:26","modified_gmt":"2011-11-01T04:57:26","slug":"json-web-token-jwt-draft-05","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=524","title":{"rendered":"JSON Web Token (JWT) Draft -05"},"content":{"rendered":"<p>I posted <a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.html\">JSON Web Token (JWT)<\/a> <a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.html\">draft -05<\/a> today, with the only change being to define an optional &#8220;nbf&#8221; (not before) claim that is distinct from the &#8220;iat&#8221; (issued at) claim.  (This more closely parallels the capabilities of SAML tokens, where there are NotBefore, NotAfter, and IssueInstant values.)  The &#8220;nbf&#8221; and &#8220;exp&#8221; claims should be used for bounding the token validity period, whereas &#8220;iat&#8221; should be used to determine token age.<\/p>\n<p>The draft is available at these locations:<\/p>\n<ul>\n<li><a href=\"http:\/\/www.ietf.org\/internet-drafts\/draft-jones-json-web-token-05.txt\">http:\/\/www.ietf.org\/internet-drafts\/draft-jones-json-web-token-05.txt<\/a><\/li>\n<li><a href=\"http:\/\/www.ietf.org\/internet-drafts\/draft-jones-json-web-token-05.xml\">http:\/\/www.ietf.org\/internet-drafts\/draft-jones-json-web-token-05.xml<\/a><\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.html\">https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.html<\/a><\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.txt\">https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.txt<\/a><\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.xml\">https:\/\/self-issued.info\/docs\/draft-jones-json-web-token-05.xml<\/a><\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.html\">https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.html<\/a> (will point to new versions as they are posted)<\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.txt\">https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.txt<\/a> (will point to new versions as they are posted)<\/li>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.xml\">https:\/\/self-issued.info\/docs\/draft-jones-json-web-token.xml<\/a> (will point to new versions as they are posted)<\/li>\n<li><a href=\"http:\/\/svn.openid.net\/repos\/specifications\/json_web_token\/1.0\/\">http:\/\/svn.openid.net\/repos\/specifications\/json_web_token\/1.0\/<\/a> (Subversion repository, with html, txt, and html versions available)<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>I posted JSON Web Token (JWT) draft -05 today, with the only change being to define an optional &#8220;nbf&#8221; (not before) claim that is distinct from the &#8220;iat&#8221; (issued at) claim. (This more closely parallels the capabilities of SAML tokens, where there are NotBefore, NotAfter, and IssueInstant values.) The &#8220;nbf&#8221; and &#8220;exp&#8221; claims should be [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,27,25],"tags":[],"class_list":["post-524","post","type-post","status-publish","format-standard","hentry","category-claims","category-json","category-specifications"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/524","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=524"}],"version-history":[{"count":4,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/524\/revisions"}],"predecessor-version":[{"id":593,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/524\/revisions\/593"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=524"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=524"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=524"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}