Bug ID 1145361: When JWT is cached the error "JWT Expired and cannot be used" is observed

Last Modified: Feb 28, 2025

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2, 16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3, 16.1.3.4, 16.1.3.5

Fixed In:
17.5.0, 17.1.1, 16.1.4

Opened: Sep 02, 2022

Severity: 3-Major

Symptoms

When JWT is cached, then the error "JWT Expired and cannot be used" is observed.

Impact

No impact.

Conditions

WebSSO is used with bearer option to generate JWT tokens.

Workaround

None

Fix Information

Removed the lee way default configured static value internally. Proper fix would be to provide a leeway configuration option.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips