-
-
Notifications
You must be signed in to change notification settings - Fork 53
Closed
Labels
backwards breaking ✂️This change will not work with the current version of the module.This change will not work with the current version of the module.compliance 📜OAuth 2.0 standard complianceOAuth 2.0 standard compliancegood first issue ✅Good for newcomersGood for newcomers
Milestone
Description
While checking the compliance of the refresh_token
grant. I discovered that the optional scope parameter in the body is ignored.
node-oauth2-server/lib/grant-types/refresh-token-grant-type.js
Lines 64 to 73 in 1b91ddc
return Promise.bind(this) | |
.then(function() { | |
return this.getRefreshToken(request, client); | |
}) | |
.tap(function(token) { | |
return this.revokeToken(token); | |
}) | |
.then(function(token) { | |
return this.saveToken(token.user, client, token.scope); | |
}); |
Metadata
Metadata
Assignees
Labels
backwards breaking ✂️This change will not work with the current version of the module.This change will not work with the current version of the module.compliance 📜OAuth 2.0 standard complianceOAuth 2.0 standard compliancegood first issue ✅Good for newcomersGood for newcomers