From 2cef12926b9986d66cdc107a106e5745c286d166 Mon Sep 17 00:00:00 2001
From: Magnus Hovland Hoff <magnus@metzum.no>
Date: Wed, 5 Mar 2025 10:15:52 +0100
Subject: [PATCH] Verify exp independently of signature

---
 src/translators/decode.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/translators/decode.rs b/src/translators/decode.rs
index 8e487de..d4c4cff 100644
--- a/src/translators/decode.rs
+++ b/src/translators/decode.rs
@@ -147,7 +147,7 @@ pub fn decode_token(
 
     insecure_validator.insecure_disable_signature_validation();
     insecure_validator.required_spec_claims = HashSet::new();
-    insecure_validator.validate_exp = false;
+    insecure_validator.validate_exp = !arguments.ignore_exp;
 
     let token_data = decode::<Payload>(&jwt, &insecure_decoding_key, &insecure_validator)
         .map_err(jsonwebtoken::errors::Error::into)