hswaw/sso
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

authorize: check scope when granting by default

Browse source
This commit is contained in:
informatic 2020-05-30 23:09:38 +02:00
parent a5e1465c28
commit fa7912621d
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
sso/views.py
View file

@ -124,6 +124,7 @@ def authorize():
if Token.query.filter( if Token.query.filter(
Token.client_id == grant.client.client_id, Token.client_id == grant.client.client_id,
Token.user_id == current_user.get_user_id(), Token.user_id == current_user.get_user_id(),
Token.scope == grant.request.scope,
).count(): ).count():
# User has unrevoked token already - grant by default # User has unrevoked token already - grant by default
return authorization.create_authorization_response(grant_user=current_user) return authorization.create_authorization_response(grant_user=current_user)