Validate expiration of access_token in UserInfo.

2015-04-21 17:14:26 -03:00 · 2015-04-21 17:14:26 -03:00 · 180e0183c5
commit 180e0183c5
parent 0f03bdfb67
1 changed files with 3 additions and 0 deletions
--- a/oidc_provider/lib/endpoints/userinfo.py
+++ b/oidc_provider/lib/endpoints/userinfo.py
@ -45,6 +45,9 @@ class UserInfoEndpoint(object):
        try:
            self.token = Token.objects.get(access_token=self.params.access_token)

+            if self.token.has_expired():
+                raise UserInfoError('invalid_token')
+
        except Token.DoesNotExist:
            raise UserInfoError('invalid_token')