Fix issue with token generation via DateTimeImmutable instead of int (dependency with lcobucci/jwt ^5.0)

Author: RuslanKononov

Subscriber/AdditionalAccessTokenClaimsAndHeaderSubscriber.php

@@ -4,18 +4,22 @@
 
 use Lexik\Bundle\JWTAuthenticationBundle\Event\JWTCreatedEvent;
 use Lexik\Bundle\JWTAuthenticationBundle\Events;
+use Psr\Clock\ClockInterface;
 use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Clock\NativeClock;
 
 final class AdditionalAccessTokenClaimsAndHeaderSubscriber implements EventSubscriberInterface
 {
-    /**
-     * @var int|null
-     */
-    private $ttl;
+    private ?int $ttl;
+    private ?ClockInterface $clock;
 
-    public function __construct(?int $ttl)
+    public function __construct(?int $ttl, ?ClockInterface $clock = null)
     {
         $this->ttl = $ttl;
+
+        if (null === $clock) {
+            $this->clock = new NativeClock(new \DateTimeZone('UTC'));
+        }
     }
 
     public static function getSubscribedEvents(): array
@@ -29,14 +33,16 @@ public static function getSubscribedEvents(): array
 
     public function addClaims(JWTCreatedEvent $event): void
     {
+        $now = $this->clock->now();
+
         $claims = [
             'jti' => uniqid('', true),
-            'iat' => time(),
-            'nbf' => time(),
+            'iat' => $now,
+            'nbf' => $now,
         ];
         $data = $event->getData();
         if (!array_key_exists('exp', $data) && $this->ttl > 0) {
-            $claims['exp'] = time() + $this->ttl;
+            $claims['exp'] = $now->modify(sprintf('+%d second',$this->ttl));
         }
         $event->setData(array_merge($claims, $data));
     }