Fix bad JWT parsing

morganchen12 · morganchen12 · commit 17af03b58183 · 2018-06-25T14:32:54.000-07:00
diff --git a/Firebase/Auth/CHANGELOG.md b/Firebase/Auth/CHANGELOG.md
@@ -1,3 +1,6 @@
+# v5.0.3
+- Fix an issue where JWT date timestamps weren't parsed correctly.
+
 # v5.0.2
 - Fix an issue where anonymous accounts weren't correctly promoted to
   non-anonymous when linked with passwordless email auth accounts.
diff --git a/Firebase/Auth/Source/FIRUser.m b/Firebase/Auth/Source/FIRUser.m
@@ -890,12 +890,14 @@ - (FIRAuthTokenResult *)parseIDToken:(NSString *)token error:(NSError **)error {
     return nil;
   }
 
+  // These are dates since 00:00:00 January 1 1970, as described by the Terminology section in
+  // the JWT spec. https://tools.ietf.org/html/rfc7519
   NSDate *expDate =
-      [NSDate dateWithTimeIntervalSinceNow:[tokenPayloadDictionary[@"exp"] doubleValue]];
+      [NSDate dateWithTimeIntervalSince1970:[tokenPayloadDictionary[@"exp"] doubleValue]];
   NSDate *authDate =
-      [NSDate dateWithTimeIntervalSinceNow:[tokenPayloadDictionary[@"auth_time"] doubleValue]];
+      [NSDate dateWithTimeIntervalSince1970:[tokenPayloadDictionary[@"auth_time"] doubleValue]];
   NSDate *issuedDate =
-      [NSDate dateWithTimeIntervalSinceNow:[tokenPayloadDictionary[@"iat"] doubleValue]];
+      [NSDate dateWithTimeIntervalSince1970:[tokenPayloadDictionary[@"iat"] doubleValue]];
   FIRAuthTokenResult *result =
      [[FIRAuthTokenResult alloc] initWithToken:token
                                 expirationDate:expDate
