Fix creating tokens when iat is already set in the payload

Services/JWSProvider/LcobucciJWSProvider.php

@@ -111,10 +111,13 @@ public function create(array $payload, array $header = [])
 
         $now = time();
 
+        $issuedAt = isset($payload['iat']) ? $payload['iat'] : $now;
+        unset($payload['iat']);
+
         if ($this->legacyJWTApi) {
-            $jws->setIssuedAt($now);
+            $jws->setIssuedAt($issuedAt);
         } else {
-            $jws->issuedAt($this->useDateObjects ? new \DateTimeImmutable("@{$now}") : $now);
+            $jws->issuedAt($this->useDateObjects && !$issuedAt instanceof \DateTimeImmutable ? new \DateTimeImmutable("@{$issuedAt}") : $issuedAt);
         }
 
         if (null !== $this->ttl || isset($payload['exp'])) {

Tests/Services/JWSProvider/AbstractJWSProviderTest.php

@@ -79,7 +79,7 @@ public function testCreate()
             ->method('getPassphrase')
             ->willReturn('foobar');
 
-        $payload     = ['username' => 'chalasr'];
+        $payload     = ['username' => 'chalasr', 'iat' => time()];
         $jwsProvider = new static::$providerClass($keyLoaderMock, 'openssl', 'RS384', 3600, 0);
 
         $this->assertInstanceOf(CreatedJWS::class, $created = $jwsProvider->create($payload));