src/main/java/com/moral/security/model/token/RefreshToken.java
@@ -30,7 +30,6 @@ * @param signingKey * * @throws BadCredentialsException * @throws JwtExpiredTokenException * * @return */ @@ -38,7 +37,7 @@ Jws<Claims> claims = token.parseClaims(signingKey); List<String> scopes = claims.getBody().get("scopes", List.class); if (scopes == null || scopes.isEmpty() if (scopes == null || scopes.isEmpty() || !scopes.stream().filter(scope -> Scopes.REFRESH_TOKEN.authority().equals(scope)).findFirst().isPresent()) { return Optional.empty(); }
