Class: StandardId::Oauth::RefreshTokenFlow

Inherits:

TokenGrantFlow

• Object
• BaseRequestFlow
• TokenGrantFlow
• StandardId::Oauth::RefreshTokenFlow

Defined in:

lib/standard_id/oauth/refresh_token_flow.rb

Instance Attribute Summary

Attributes inherited from TokenGrantFlow

#params, #request

Attributes inherited from BaseRequestFlow

#current_account, #params, #request

Instance Method Summary

• #authenticate! ⇒ Object

Methods inherited from TokenGrantFlow

#execute, extra_permitted_keys, #initialize

Methods inherited from BaseRequestFlow

expect_params, expected_params, extra_permitted_keys, #initialize, permit_params, permitted_params

Constructor Details

This class inherits a constructor from StandardId::Oauth::TokenGrantFlow

Instance Method Details

#authenticate! ⇒ Object

Raises:

• (StandardId::InvalidGrantError)

# File 'lib/standard_id/oauth/refresh_token_flow.rb', line 7

def authenticate!
  validate_client_secret!(params[:client_id], params[:client_secret]) if params[:client_secret].present?

  @refresh_payload = StandardId::JwtService.decode(params[:refresh_token])
  raise StandardId::InvalidGrantError, "Invalid or expired refresh_token" if @refresh_payload.blank?

  if @refresh_payload[:client_id] != params[:client_id]
    raise StandardId::InvalidGrantError, "Refresh token was not issued to this client"
  end

  validate_scope_narrowing!
end