File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change @@ -179,6 +179,9 @@ public function getToken(
179179 $ newToken = $ this ->secureRandom ->generate (72 , ISecureRandom::CHAR_ALPHANUMERIC );
180180 $ newCode = $ this ->secureRandom ->generate (128 , ISecureRandom::CHAR_ALPHANUMERIC );
181181 $ newEncryptedToken = $ this ->crypto ->encrypt ($ newToken , $ newCode );
182+ $ redeemedThrottleReason = $ grant_type === 'authorization_code '
183+ ? 'authorization_code_already_redeemed '
184+ : 'refresh_token_already_redeemed ' ;
182185 $ tokenRotated = false ;
183186
184187 $ this ->db ->beginTransaction ();
@@ -209,7 +212,7 @@ public function getToken(
209212 $ response = new JSONResponse ([
210213 'error ' => 'invalid_request ' ,
211214 ], Http::STATUS_BAD_REQUEST );
212- $ response ->throttle (['invalid_request ' => ' token already redeemed ' ]);
215+ $ response ->throttle (['invalid_request ' => $ redeemedThrottleReason ]);
213216 return $ response ;
214217 }
215218
Original file line number Diff line number Diff line change @@ -653,7 +653,7 @@ public function testRefreshTokenRedeemedConcurrently(): void {
653653 $ expected = new JSONResponse ([
654654 'error ' => 'invalid_request ' ,
655655 ], Http::STATUS_BAD_REQUEST );
656- $ expected ->throttle (['invalid_request ' => 'token already redeemed ' ]);
656+ $ expected ->throttle (['invalid_request ' => 'refresh_token_already_redeemed ' ]);
657657
658658 $ accessToken = new AccessToken ();
659659 $ accessToken ->setId (21 );
You can’t perform that action at this time.
0 commit comments