public TimeSpan ExpirationTimeClockTolerance { get; set; }
Clock tolerance for the expiration check.
Causes a JWT to pass validation up to this duration after it really expired;
this is to allow for possible local-client clock skew. Defaults to zero seconds.
public TimeSpan IssuedAtClockTolerance { get; set; }
Clock tolerance for the issued-at check.
Causes a JWT to pass validation up to this duration before it is really valid;
this is to allow for possible local-client clock skew. Defaults to 30 seconds.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe \u003ccode\u003eGoogleJsonWebSignature.ValidationSettings\u003c/code\u003e class provides settings for validating JSON Web Signatures, with version 1.69.0 being the most recent.\u003c/p\u003e\n"],["\u003cp\u003eThis class inherits from \u003ccode\u003eobject\u003c/code\u003e and contains properties like \u003ccode\u003eAudience\u003c/code\u003e, \u003ccode\u003eClock\u003c/code\u003e, \u003ccode\u003eExpirationTimeClockTolerance\u003c/code\u003e, \u003ccode\u003eForceGoogleCertRefresh\u003c/code\u003e, \u003ccode\u003eHostedDomain\u003c/code\u003e, and \u003ccode\u003eIssuedAtClockTolerance\u003c/code\u003e for fine-tuning validation criteria.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eValidationSettings\u003c/code\u003e constructor is available for creating new instances, and properties like \u003ccode\u003eAudience\u003c/code\u003e and \u003ccode\u003eHostedDomain\u003c/code\u003e allow you to specify trusted client IDs and GSuite domains respectively.\u003c/p\u003e\n"],["\u003cp\u003eThe class includes clock tolerance settings for expiration and issued-at checks, which are useful to compensate for clock skew, and also allows for control over whether new certificates are forcibly downloaded.\u003c/p\u003e\n"],["\u003cp\u003eAn extension method called \u003ccode\u003eUtilities.ThrowIfNull\u003c/code\u003e is available.\u003c/p\u003e\n"]]],[],null,[]]
