Increase session token JWT leeway

Author: paulomarg

CHANGELOG.md

@@ -4,6 +4,8 @@ Note: For changes to the API, see https://shopify.dev/changelog?filter=api
 
 ## Unreleased
 
+- [#](https://github.com/Shopify/shopify-api-ruby/pull/) Increase session token JWT validation leeway from 5s to 10s
+
 ## Version 11.1.0
 
 - [#1002](https://github.com/Shopify/shopify-api-ruby/pull/1002) Add new method to construct the host app URL for an embedded app, allowing for safer redirect to app inside appropriate shop admin

lib/shopify_api/auth/jwt_payload.rb

@@ -6,7 +6,7 @@ module Auth
     class JwtPayload
       extend T::Sig
 
-      JWT_EXPIRATION_LEEWAY = 5
+      JWT_EXPIRATION_LEEWAY = 10
 
       sig { returns(String) }
       attr_reader :iss, :dest, :aud, :sub, :jti, :sid