I think this is invalid. issued_at is specifically there to deal with rapid token reissue. As such, it needs to have a very high degree of precision: if token requests come in less than a second apart, they will stil be treated as distinct tokens.
Expires at is much more granaular, most likely at the minute or larger level. They do not need to be sub second.
I think this is invalid. issued_at is specifically there to deal with rapid token reissue. As such, it needs to have a very high degree of precision: if token requests come in less than a second apart, they will stil be treated as distinct tokens.
Expires at is much more granaular, most likely at the minute or larger level. They do not need to be sub second.