Fix lcobucci/jwt ValidAt

app/composer.json

@@ -9,7 +9,7 @@
         "egulias/email-validator": "^3.0",
         "endroid/qr-code": "^4.0",
         "lcobucci/clock": "^2.0 || ^3.0",
-        "lcobucci/jwt": "^4.0",
+        "lcobucci/jwt": "^4.1",
         "paragonie/constant_time_encoding": "^2.4",
         "spomky-labs/otphp": "^10.0 || ^11.0",
         "symfony/dotenv": "^5.4 || ^6.0",

composer.json

@@ -15,7 +15,7 @@
         "php": "~8.0.0 || ~8.1.0 || ~8.2.0",
         "ext-json": "*",
         "lcobucci/clock": "^2.0 || ^3.0",
-        "lcobucci/jwt": "^4.0",
+        "lcobucci/jwt": "^4.1",
         "paragonie/constant_time_encoding": "^2.4",
         "spomky-labs/otphp": "^10.0 || ^11.0",
         "symfony/config": "^5.4 || ^6.0",

src/trusted-device/Security/TwoFactor/Trusted/JwtTokenEncoder.php

@@ -65,7 +65,7 @@ public function decodeToken(string $encodedToken): ?Plain
     private function validationConstraints(): iterable
     {
         yield new Constraint\SignedWith($this->configuration->signer(), $this->configuration->signingKey());
-        yield new Constraint\ValidAt($this->clock); // replace with LooseValidAt once dependency on lcobucci/jwt is bumped up
+        yield new Constraint\LooseValidAt($this->clock);
         yield from $this->configuration->validationConstraints();
     }
 }

src/trusted-device/composer.json

@@ -15,7 +15,7 @@
         "php": "~8.0.0 || ~8.1.0 || ~8.2.0",
         "scheb/2fa-bundle": "self.version",
         "lcobucci/clock": "^2.0 || ^3.0",
-        "lcobucci/jwt": "^4.0"
+        "lcobucci/jwt": "^4.1"
     },
     "autoload": {
         "psr-4": {