Adding a Not Before date to the JWT

vitorpamplona · vitorpamplona · commit 5c219115cd9f · 2021-07-05T12:47:42.000-04:00
diff --git a/lib/shc.js b/lib/shc.js
@@ -8,17 +8,22 @@ const URI_SCHEMA = 'shc';
 /*
  * I am not sure if I should build this by hand. 
  */
-export async function makeJWT(payload, monthsToExpire, issuer) {
+export async function makeJWT(payload, monthsToExpire, issuer, notBeforeDate) {
   let iss = new Date();
   let exp = new Date(iss);
   exp.setMonth(exp.getMonth()+monthsToExpire);
 
-  return {
+  let jwt = {
     iss: issuer,
     iat: Math.round(iss.getTime()/1000),
     exp: Math.round(exp.getTime()/1000),
     vc: payload
   };
+
+  if (notBeforeDate)
+    jwt['nbf'] = Math.round(notBeforeDate.getTime()/1000);
+
+  return jwt;
 }
 
 export async function parseJWT(jwt) {
diff --git a/test/sign-verify.spec.js b/test/sign-verify.spec.js
@@ -276,4 +276,12 @@ describe('JWS Crypto w/ New Keys', function() {
     const result = await verify(signed, GENERATED_PUBLIC_KEY);
     expect(result).to.be.true;
   });
+});
+
+describe('JWS Crypto w/ New Keys', function() {
+  it('should sign and verify the package w/ Not Before Date', async function() {
+    const signed = await sign(await makeJWT(TEST_PAYLOAD, 48, "https://pcf.pw", new Date()), GENERATED_PRIVATE_KEY);
+    const result = await verify(signed, GENERATED_PUBLIC_KEY);
+    expect(result).to.be.true;
+  });
 });
