Fix incorrect documentation for jwt (#651)

* Fix incorrect default values * Added verify_nbf * Fix incorrect `require` option * [pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.ci Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
jpadilla · Apr 28, 2021 · 0da4223 · 0da4223
1 parent 545931d
commit 0da4223
Showing 1 changed file with 12 additions and 7 deletions.
diff --git a/docs/api.rst b/docs/api.rst
@@ -43,13 +43,18 @@ API Reference
 
     :param dict options: extended decoding and validation options
 
-        * ``require_exp=False`` check that ``exp`` (expiration) claim is present
-        * ``require_iat=False`` check that ``iat`` (issued at) claim is present
-        * ``require_nbf=False`` check that ``nbf`` (not before) claim is present
-        * ``verify_aud=False`` check that ``aud`` (audience) claim matches ``audience``
-        * ``verify_iat=False`` check that ``iat`` (issued at) claim value is an integer
-        * ``verify_exp=False`` check that ``exp`` (expiration) claim value is OK
-        * ``verify_iss=False`` check that ``iss`` (issuer) claim matches ``issuer``
+        * ``require=[]`` list of claims that must be present. E.g. ``require=["exp", "iat", "nbf"]``.
+            Only verifies that the claims exists. Does NOT verify that the claims are valid.
+        * ``verify_aud=True`` but will be ignored if ``verify_signature`` is ``False``.
+            Check that ``aud`` (audience) claim matches ``audience``
+        * ``verify_iat=True`` but will be ignored if ``verify_signature`` is ``False``.
+            Check that ``iat`` (issued at) claim value is an integer
+        * ``verify_exp=True`` but will be ignored if ``verify_signature`` is ``False``.
+            Check that ``exp`` (expiration) claim value is OK
+        * ``verify_iss=True`` but will be ignored if ``verify_signature`` is ``False``.
+            Check that ``iss`` (issuer) claim matches ``issuer``
+        * ``verify_nbf=True`` but will be ignored if ``verify_signature`` is ``False``.
+            Check that ``nbf`` (not before) is in the past
         * ``verify_signature=True`` verify the JWT cryptographic signature
 
     :param Iterable audience: optional, the value for ``verify_aud`` check