diff options
| author | Juha Vuolle <juha.vuolle@qt.io> | 2024-05-20 13:50:23 +0300 |
|---|---|---|
| committer | Juha Vuolle <juha.vuolle@qt.io> | 2024-05-23 14:07:21 +0300 |
| commit | 042561187475e1c56292748bb75aca0d1bc082a7 (patch) | |
| tree | 5f0e45e4eb724510425296261f68b2afe969227f /src/oauth/qoauth2authorizationcodeflow.cpp | |
| parent | 67b2aec9dd987fc4ea0a7c817639b36380ccaf80 (diff) | |
Remove redirect_uri parameter usage with token refresh
'redirect_uri' parameter is not needed in token refresh request.
This is as per RFC (6749 Section 6 Refreshing Access Token).
In terms of use cases, the token refresh can occur days or weeks
after the original authorization request. Thus having a reply handler
around which returns the same redirect_uri is probably not a
reasonable assumption (applications can avoid authorization
altogether if they already have a refresh token).
[ChangeLog][QOAuth2AuthorizationCodeFlow] redirect_uri parameter is no
longer included in access token refresh request
Task-number: QTBUG-124333
Change-Id: I4a8e2134329e11523483936d1f1d10bf7ff38b92
Reviewed-by: MÃ¥rten Nordheim <marten.nordheim@qt.io>
Reviewed-by: Ivan Solovev <ivan.solovev@qt.io>
Diffstat (limited to 'src/oauth/qoauth2authorizationcodeflow.cpp')
| -rw-r--r-- | src/oauth/qoauth2authorizationcodeflow.cpp | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/src/oauth/qoauth2authorizationcodeflow.cpp b/src/oauth/qoauth2authorizationcodeflow.cpp index 23f9f80..bf0ec82 100644 --- a/src/oauth/qoauth2authorizationcodeflow.cpp +++ b/src/oauth/qoauth2authorizationcodeflow.cpp @@ -443,7 +443,6 @@ void QOAuth2AuthorizationCodeFlow::refreshAccessToken() QUrlQuery query; parameters.insert(Key::grantType, QStringLiteral("refresh_token")); parameters.insert(Key::refreshToken, d->refreshToken); - parameters.insert(Key::redirectUri, QUrl::toPercentEncoding(callback())); parameters.insert(Key::clientIdentifier, d->clientIdentifier); parameters.insert(Key::clientSharedSecret, d->clientIdentifierSharedKey); if (d->modifyParametersFunction) |