Ensure device token errors are returning 400

duzumaki · dopry · commit bfd67a300b69 · 2025-05-19T11:44:38.000-04:00
diff --git a/oauth2_provider/views/base.py b/oauth2_provider/views/base.py
@@ -323,10 +323,18 @@ def device_flow_token_response(
         device = Device.objects.get(device_code=device_code)
 
         if device.status == device.AUTHORIZATION_PENDING:
-            raise AuthorizationPendingError
+            pending_error = AuthorizationPendingError()
+            return http.HttpResponse(
+                content=pending_error.json, status=pending_error.status_code, content_type="application/json"
+            )
 
         if device.status == device.DENIED:
-            raise AccessDenied
+            access_denied_error = AccessDenied()
+            return http.HttpResponse(
+                content=access_denied_error.json,
+                status=access_denied_error.status_code,
+                content_type="application/json",
+            )
 
         url, headers, body, status = self.create_token_response(request)
 
