Authentication failed: error validating claims: square/go-jose/jwt: validation failed, token not valid yet (nbf)

I found some documentation about jwt role creation with some parameters/key ( ot_before_leeway ) to configure nbf but after doing some tests with role creation via curl i t seems “not_before_leeway” is NOT assumed in configuration of the role.

commands used :

VAULT_TOKEN=cat /data/.root_token | tail -1


ROLE_NOTIFICATIONENGINE=’{“allowed_redirect_uris”: null,“bound_audiences”: [“”],“bound_cidrs”: null,“bound_claims”: null,“bound_subject”: “”,“claim_mappings”: null,“groups_claim”: “”,“max_ttl”: 0,“num_uses”: 0,“oidc_scopes”: null,“period”: 0,“policies”: [“XXXengine”],“role_type”: “jwt”,“ttl”: 0,“user_claim”: “sub”,“not_before_leeway”: 300}’

curl -X POST $VAULT_ADDR/v1/auth/jwt/role/XXX_contributor -H “$HEADER” -d “$ROLE_NOTIFICATIONENGINE”


Any suggestion or recommendation would be welcome !