Commit 3af15b13 authored by dcoutadeur dcoutadeur's avatar dcoutadeur dcoutadeur

fix id_token validity not correctly evaluated #1662

parent 7ad2e0e6
......@@ -564,7 +564,7 @@ sub checkIDTokenValidity {
$self->logger->error("Auth time was not returned by OP $op");
return 0;
}
if ( $auth_time + $max_age > time ) {
if ( time > $auth_time + $max_age ) {
$self->userLogger->error(
"Authentication time ($auth_time) is too old (Max age: $max_age)"
);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment