Iat Claim is slightly in the future

My JWT token provided by keycloak sometimes has a time a few seconds in the future for its Issued at time (iat) claim. This results in our token being invalid and our requests being denied. Is there a way I can adjust the way keycloak assigns the IAT to add some padding and prevent this issue?

That looks like a time synchronization issue. Time on the keycloak server or on your client may not be synchronized. I would configure/fix time synchronization instead of Keycloak hacking.

1 Like