oauth2.dev

iat

IESG

Registry Context

`iat` identifies when the JWT was issued. If included, its value must be a JSON number containing a NumericDate value. Use of the claim is optional.

Technical Summary

`iat` is the registered JWT issued-at claim. Its value, when present, MUST be a JSON number containing a NumericDate value.

When Used

Use it when a consumer needs to determine the JWT's issuance time or age.

Normative Requirements

JWT producer

MUST
1
  1. RFC 7519 - Section 4.1.6

    The `iat` claim value MUST be a number containing a NumericDate value..

    Condition: When the `iat` claim is present.

    Its value MUST be a number containing a NumericDate value.

OPTIONAL
1
  1. RFC 7519 - Section 4.1.6

    Use of the `iat` claim is OPTIONAL..

    Use of this claim is OPTIONAL.

Validation Guidance

error

Report an error when a present `iat` value is not a JSON number containing a NumericDate value.

info

Do not require the `iat` claim to be present in every JWT.

Reference

Details

Entry Id
iat
Claim Name
iat
Claim Description
Issued At
Change Controller
IESG
Reference
RFC7519 - Section 4.1.6