fix(openid): add iat claim in id_token

lib/http_server/src/token_claims.rs

@@ -64,7 +64,9 @@ impl OAuth2AccessTokenClaims {
 #[derive(Debug, Serialize, Deserialize, Clone)]
 #[fully_pub]
 struct OIDCIdTokenClaims {
-    /// Token expiration
+    /// Issued at date
+    iat: u64,
+    /// Token expiration date
     exp: u64,
     /// Token issuer (URI to the issuer)
     iss: String,
@@ -91,6 +93,7 @@ impl OIDCIdTokenClaims {
             iss: config.instance.base_uri.clone(),
             aud: client_id.into(),
             sub: user.id,
+            iat: get_current_timestamp(),
             exp: get_current_timestamp() + 86_000,
             email: user.email,
             name: user.full_name,