> your validation logic simply should refuse any token with iat < $NOW for that identity.
makes no sense
... ok now it does :) your now is not now, but a stored value
> your validation logic simply should refuse any token with iat < $NOW for that identity.
makes no sense
... ok now it does :) your now is not now, but a stored value