Skip to content

Refresh Tokens not listed in accepted grant_type's #53

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nghamilton opened this issue Jan 22, 2019 · 2 comments
Open

Refresh Tokens not listed in accepted grant_type's #53

nghamilton opened this issue Jan 22, 2019 · 2 comments
Labels
bug Represents a bug

Comments

@nghamilton
Copy link

Given that refresh tokens must be supported, and the /token endpoint must accept them, should refresh_token also be included in the permitted options for the grant_type claim, as specified in Client Authentication? https://consumerdatastandardsaustralia.github.io/infosec/#client-authentication currently says it must be "authorisation_code or client_credentials".
@lukepopp
Copy link
Contributor

Yep, good pickup thanks. Will add.

@JamesMBligh JamesMBligh added the bug Represents a bug label Apr 3, 2019
@JamesMBligh
Copy link
Contributor

@nghamilton has this been addressed or is it still outstanding?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Represents a bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@nghamilton @JamesMBligh @lukepopp