this is dependent on the issuer of the JWT, you could be using a service that issues JWTs valid for 100 years, or you could be using a 3rd party JWT issueing service that doesn't support custom roles in the JWT on the free plan too ;)
Obviously what I meant here was one shouldn't issue a jwt which is valid for too long, if third party doesn't allow, don't use that service
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
this is dependent on the issuer of the JWT, you could be using a service that issues JWTs valid for 100 years, or you could be using a 3rd party JWT issueing service that doesn't support custom roles in the JWT on the free plan too ;)
Obviously what I meant here was one shouldn't issue a jwt which is valid for too long, if third party doesn't allow, don't use that service