I am new to using JWT and I was wondering how the expiration works.
I looked into jwt in march 2022 and read the max time for expiry is 2 hours but when I am looking now it says the max expiration is 24 hours. I just wanted to know if something changed lately or it that been always the case. Thanks in advance!
Do you mean an access token or an identity token? Each has different expiration settings. The ID token has a default of 10 hours, and the access token of 24 hours, but these can be changed (including to be longer).