Open bratelefant opened 5 months ago
Thank you @bratelefant this is indeed missing 😵 maybe I can add this in the next days
I already did some work on this on a local copy, maybe if we can fix https://github.com/leaonline/oauth2-server/issues/17 I could contribute a PR. Ran across several other issues and possible improvements (eg. implement a meteor 3.0 compatible model). Would also really like to address this enhancement.
Describe the bug According to RFC 6749, a refresh of an access token only requires the grant_type and the refresh_token. However, an incoming request fails with the message
[validation error]: key <code> => expected <[object Object]>, got <undefined>
.To Reproduce Steps to reproduce the behavior:
refresh token
request, with a body like{refresh_token: "12345xyz", grant_type: "refresh_token"}
Expected behavior Refresh request should provide a fresh access token