You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by se...@apache.org on 2012/05/21 12:21:02 UTC
svn commit: r1340959 -
/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrantHandler.java
Author: sergeyb
Date: Mon May 21 10:21:01 2012
New Revision: 1340959
URL: http://svn.apache.org/viewvc?rev=1340959&view=rev
Log:
Minor update to the refresh token grant handler
Modified:
cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrantHandler.java
Modified: cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrantHandler.java
URL: http://svn.apache.org/viewvc/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrantHandler.java?rev=1340959&r1=1340958&r2=1340959&view=diff
==============================================================================
--- cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrantHandler.java (original)
+++ cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrantHandler.java Mon May 21 10:21:01 2012
@@ -58,7 +58,7 @@ public class RefreshTokenGrantHandler im
String scope = params.getFirst(OAuthConstants.SCOPE);
if (scope != null) {
List<String> tokenScopes = OAuthUtils.convertPermissionsToScopeList(token.getScopes());
- if (tokenScopes.containsAll(OAuthUtils.parseScope(scope))) {
+ if (!tokenScopes.containsAll(OAuthUtils.parseScope(scope))) {
throw new OAuthServiceException(OAuthConstants.INVALID_SCOPE);
}
}