fschuindt · jahammo2 · Sep 1, 2021 · Aug 12, 2025 · Aug 12, 2025 · Aug 12, 2025
diff --git a/firebase_id_token.gemspec b/firebase_id_token.gemspec
@@ -22,7 +22,7 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.add_development_dependency 'bundler', '~> 1.17', '>= 1.17.2'
+  spec.add_development_dependency 'bundler', '~> 2.2', '>= 2.2.33'
   spec.add_development_dependency 'rake', '~> 12.3', '>= 12.3.3'
   spec.add_development_dependency 'rspec', '~> 3.0'
   spec.add_development_dependency 'redcarpet', '~> 3.4', '>= 3.4.0'
@@ -32,6 +32,6 @@ Gem::Specification.new do |spec|
 
   spec.add_runtime_dependency 'redis', '~> 4.0', '>= 4.0.1'
   spec.add_runtime_dependency 'redis-namespace', '~> 1.6', '>= 1.6.0'
-  spec.add_dependency 'httparty', '~> 0.16', '>= 0.16.2'
+  spec.add_dependency 'httparty', '>= 0.20.0', '< 1.0'
   spec.add_runtime_dependency 'jwt', '~> 2.1', '>= 2.1.0'
 end
diff --git a/lib/firebase_id_token/signature.rb b/lib/firebase_id_token/signature.rb
@@ -29,7 +29,7 @@ module FirebaseIdToken
   class Signature
     # Pre-default JWT algorithm parameters as recommended
     # [here](https://goo.gl/uOK5Jx).
-    JWT_DEFAULTS = { algorithm: 'RS256', verify_iat: true }
+    JWT_DEFAULTS = { algorithm: 'RS256', verify_iat: false }
 
     # Returns the decoded JWT hash payload of the Firebase ID Token if the
     # signature in the token matches with one of the certificates downloaded
@@ -117,8 +117,7 @@ def authorized?(payload)
     end
 
     def still_valid?(payload)
-      payload['exp'].to_i > Time.now.to_i &&
-      payload['iat'].to_i <= Time.now.to_i
+      payload['exp'].to_i > Time.now.to_i
     end
 
     def issuer_authorized?(payload)