Authorization Server should throw a `GNAPServerRouteError` if invalid token is used during rotation #3100

njlie · 2024-11-15T18:57:59Z

The following conditional in the access token routes file does not throw a GNAPServerError like the rest of the errors in that route logic.

rafiki/packages/auth/src/accessToken/routes.ts

Lines 155 to 157 in be426fa

    
           if (!newToken) { 
        
             throw new Error('invalid access token') 
        
           }

It should throw a 404 http code and a invalid_rotation GNAP error code.

The text was updated successfully, but these errors were encountered:

njlie added good first issue Good for newcomers pkg: auth Changes in the GNAP auth package. labels Nov 15, 2024

github-project-automation bot moved this to Backlog in Rafiki Nov 15, 2024

github-project-automation bot added this to Rafiki Nov 15, 2024

golobitch self-assigned this Nov 17, 2024

golobitch linked a pull request Nov 17, 2024 that will close this issue

feat(auth): return GNAP 404 error if token cannot be rotated #3101

Open

6 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Authorization Server should throw a `GNAPServerRouteError` if invalid token is used during rotation #3100

Authorization Server should throw a `GNAPServerRouteError` if invalid token is used during rotation #3100

njlie commented Nov 15, 2024

Authorization Server should throw a GNAPServerRouteError if invalid token is used during rotation #3100

Authorization Server should throw a GNAPServerRouteError if invalid token is used during rotation #3100

Comments

njlie commented Nov 15, 2024

Authorization Server should throw a `GNAPServerRouteError` if invalid token is used during rotation #3100

Authorization Server should throw a `GNAPServerRouteError` if invalid token is used during rotation #3100