Validate a decoded JWT against a set of configurable rules.
Returns an array of JwtValidationIssue objects. An empty array means the token passed all requested checks.
This function does not verify the cryptographic signature.
A decoded JwtToken.
Which checks to perform and their parameters.
An array of validation issues (empty = valid).
const issues = validateJwt(jwt, { issuer: 'https://auth.example.com', audience: 'my-app', requireSubject: true, requiredClaims: ['role', 'permissions'],});if (issues.length > 0) { console.warn('JWT validation failed:', issues);} Copy
const issues = validateJwt(jwt, { issuer: 'https://auth.example.com', audience: 'my-app', requireSubject: true, requiredClaims: ['role', 'permissions'],});if (issues.length > 0) { console.warn('JWT validation failed:', issues);}
Validate a decoded JWT against a set of configurable rules.
Returns an array of JwtValidationIssue objects. An empty array means the token passed all requested checks.
This function does not verify the cryptographic signature.