Remove expires_in field when the access_token isn't expiring

2024-11-08 21:52:33 +05:30 · 2019-12-13 16:00:51 +03:00 · 2019-12-13 16:00:51 +03:00 · 40eca5b8b6
commit 40eca5b8b6
parent 22d8971dc5
3 changed files with 11 additions and 7 deletions
--- a/api/modules/oauth/models/OauthProcess.php
+++ b/api/modules/oauth/models/OauthProcess.php
@ -176,11 +176,15 @@ class OauthProcess {
            }

            if (($result['expires_in'] ?? 0) <= 0) {
-                // Since some of our clients use this field to understand how long the token will live,
-                // we have to give it some value. The tokens with zero lifetime don't expire
-                // but in order not to break the clients storing the value as integer on 32-bit systems,
-                // let's calculate the value based on the unsigned maximum for this type
-                $result['expires_in'] = 2 ** 31 - time();
+                if ($shouldIssueRefreshToken || $grantType === 'refresh_token') {
+                    // Since some of our clients use this field to understand how long the token will live,
+                    // we have to give it some value. The tokens with zero lifetime don't expire
+                    // but in order not to break the clients storing the value as integer on 32-bit systems,
+                    // let's calculate the value based on the unsigned maximum for this type
+                    $result['expires_in'] = 2 ** 31 - time();
+                } else {
+                    unset($result['expires_in']);
+                }
            }

            Yii::$app->statsd->inc("oauth.issueToken_client.{$clientId}");
--- a/api/tests/functional/oauth/AccessTokenCest.php
+++ b/api/tests/functional/oauth/AccessTokenCest.php
@ -22,7 +22,7 @@ class AccessTokenCest {
            'token_type' => 'Bearer',
        ]);
        $I->canSeeResponseJsonMatchesJsonPath('$.access_token');
-        $I->canSeeResponseJsonMatchesJsonPath('$.expires_in');
+        $I->cantSeeResponseJsonMatchesJsonPath('$.expires_in');
        $I->cantSeeResponseJsonMatchesJsonPath('$.refresh_token');
    }

--- a/api/tests/functional/oauth/ClientCredentialsCest.php
+++ b/api/tests/functional/oauth/ClientCredentialsCest.php
@ -79,7 +79,7 @@ class ClientCredentialsCest {
            'token_type' => 'Bearer',
        ]);
        $I->canSeeResponseJsonMatchesJsonPath('$.access_token');
-        $I->canSeeResponseJsonMatchesJsonPath('$.expires_in');
+        $I->cantSeeResponseJsonMatchesJsonPath('$.expires_in');
        $I->cantSeeResponseJsonMatchesJsonPath('$.refresh_token');
    }