public TimeSpan ExpirationTimeClockTolerance { get; set; }
Clock tolerance for the expiration check.
Causes a JWT to pass validation up to this duration after it really expired;
this is to allow for possible local-client clock skew. Defaults to zero seconds.
public TimeSpan IssuedAtClockTolerance { get; set; }
Clock tolerance for the issued-at check.
Causes a JWT to pass validation up to this duration before it is really valid;
this is to allow for possible local-client clock skew. Defaults to 30 seconds.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["This document provides details on the `GoogleJsonWebSignature.ValidationSettings` class, which is used for validating JSON Web Signatures within the Google.Apis.Auth library."],["The `ValidationSettings` class offers properties to manage various aspects of JWT validation, such as trusted audience IDs, clock settings, and tolerance for clock skew."],["It allows for control over the JWT's expiration time and issued-at time checks using the `ExpirationTimeClockTolerance` and `IssuedAtClockTolerance` properties."],["The `Audience` property allows specifying a list of trusted client IDs, and the `HostedDomain` property enables domain validation for GSuite users."],["The `ForceGoogleCertRefresh` property can be used to force new certificates to be downloaded from Google, which defaults to `false`."]]],[]]
