dex/db/migrations/0013_add_scopes_to_refresh_tokens.sql at 3ec692297b398749151b401c4a0b16af35bdfd1a - Arsharth/dex - Forgejo: Beyond coding. We forge.

Arsharth/dex

forked from mystiq/dex

Bobby Rullo 32a1994a5e refresh tokens: store and validate scopes.

A refresh request must fail if it asks for scopes that were not
originally granted when the refresh token was obtained.

This Commit:

* changes repo to store scopes with tokens
* changes repo interface signatures so that scopes can be stored and
  verified
* updates dependent code to pass along scopes

2016-06-14 14:14:36 -07:00

5 lines

141 B

SQL

Raw Blame History

 -- +migrate Up
 ALTER TABLE refresh_token ADD COLUMN "scopes" text;
 UPDATE refresh_token SET scopes = 'openid profile email offline_access';