Change invalid_scope http code to 400 (#2622)
This commit is contained in:
parent
a0af787c97
commit
fe4172a50a
|
@ -1104,7 +1104,7 @@ sub _handleClientCredentialsGrant {
|
|||
$self->userLogger->warn( 'Client '
|
||||
. $client_id
|
||||
. " was not granted any requested scopes ($req_scope) for $rp" );
|
||||
return $self->sendOIDCError( $req, 'invalid_scope', 403 );
|
||||
return $self->sendOIDCError( $req, 'invalid_scope', 400 );
|
||||
}
|
||||
|
||||
my $infos = {
|
||||
|
@ -1239,7 +1239,7 @@ sub _handlePasswordGrant {
|
|||
$self->userLogger->warn( 'User '
|
||||
. $req->sessionInfo->{ $self->conf->{whatToTrace} }
|
||||
. " was not granted any requested scopes ($req_scope) for $rp" );
|
||||
return $self->sendOIDCError( $req, 'invalid_scope', 403 );
|
||||
return $self->sendOIDCError( $req, 'invalid_scope', 400 );
|
||||
}
|
||||
|
||||
my $user_id = $self->getUserIDForRP( $req, $rp, $req->sessionInfo );
|
||||
|
|
Loading…
Reference in New Issue
Block a user