External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-05-02 23:25:29 -02:30
Code Issues Packages Projects Releases Wiki Activity

Do not create refresh tokens for apps with implicit grant type.

Browse Source 
Signed-off-by: Yunfan Zhang <yz322@duke.edu>
This commit is contained in:
Yunfan Zhang
2018-08-06 16:15:02 -04:00
parent 86a1f9c0ad
commit 02db543848
3 changed files with 56 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
awx/api/serializers.py
View File

@@ -1093,7 +1093,7 @@ class UserAuthorizedTokenSerializer(BaseOAuth2TokenSerializer):
)
obj = super(UserAuthorizedTokenSerializer, self).create(validated_data)
obj.save()
if obj.application is not None:
if obj.application and obj.application.authorization_grant_type != 'implicit':
RefreshToken.objects.create(
user=current_user,
token=generate_token(),
@@ -1116,7 +1116,7 @@ class OAuth2TokenSerializer(BaseOAuth2TokenSerializer):
if obj.application and obj.application.user:
obj.user = obj.application.user
obj.save()
if obj.application is not None:
if obj.application and obj.application.authorization_grant_type != 'implicit':
RefreshToken.objects.create(
user=current_user,
token=generate_token(),