Add unsupported_grant_type error

thomseddon · thomseddon · commit 4dd9d75b8aae · 2014-02-23T15:45:20.000Z
See spec: http://tools.ietf.org/html/rfc6749#section-5.2
diff --git a/lib/error.js b/lib/error.js
@@ -31,6 +31,7 @@ function OAuth2Error (error, description, err) {
   switch (error) {
     case 'invalid_grant':
     case 'invalid_request':
+    case 'unsupported_grant_type':
       this.code = 400;
       break;
     case 'invalid_client':
diff --git a/lib/grant.js b/lib/grant.js
@@ -72,9 +72,11 @@ function extractCredentials (done) {
 
   // Grant type
   this.grantType = this.req.body && this.req.body.grant_type;
-  if (!this.grantType || !this.grantType.match(this.config.regex.grantType)) {
+  if (!this.grantType) {
     return done(error('invalid_request',
       'Invalid or missing grant_type parameter'));
+  } else if (!this.grantType.match(this.config.regex.grantType)) {
+    return done(error('unsupported_grant_type', 'Unsupported grant type'));
   }
 
   // Extract credentials
@@ -162,8 +164,7 @@ function checkGrantType (done) {
     case 'refresh_token':
       return useRefreshTokenGrant.call(this, done);
     default:
-      done(error('invalid_request',
-        'Invalid grant_type parameter or parameter missing'));
+      done(error('unsupported_grant_type', 'Unsupported grant type'));
   }
 }
 
diff --git a/test/grant.extended.js b/test/grant.extended.js
@@ -59,7 +59,7 @@ describe('Granting with extended grant type', function () {
         client_id: 'thom',
         client_secret: 'nightworld'
       })
-      .expect(400, /invalid grant_type/i, done);
+      .expect(400, /unsupported grant type/i, done);
   });
 
   it('should still detect unsupported grant_type', function (done) {
diff --git a/test/grant.js b/test/grant.js
@@ -82,7 +82,7 @@ describe('Grant', function() {
         .post('/oauth/token')
         .set('Content-Type', 'application/x-www-form-urlencoded')
         .send({ grant_type: 'password' })
-        .expect(400, /invalid or missing grant_type parameter/i, done);
+        .expect(400, /unsupported grant type/i, done);
     });
 
     it('should check client_id exists', function (done) {
@@ -178,7 +178,7 @@ describe('Grant', function() {
         .post('/oauth/token')
         .set('Content-Type', 'application/x-www-form-urlencoded')
         .send({ grant_type: 'password', client_id: 'thom', client_secret: 'nightworld' })
-        .expect(400, /invalid or missing grant_type/i, done);
+        .expect(400, /unsupported grant type/i, done);
     });
   });
 

Original file line number	Diff line number	Diff line change
`@@ -72,9 +72,11 @@ function extractCredentials (done) {`
`72`	`72`
`73`	`73`	`// Grant type`
`74`	`74`	`this.grantType = this.req.body && this.req.body.grant_type;`
`75`		`- if (!this.grantType \|\| !this.grantType.match(this.config.regex.grantType)) {`
	`75`	`+ if (!this.grantType) {`
`76`	`76`	`return done(error('invalid_request',`
`77`	`77`	`'Invalid or missing grant_type parameter'));`
	`78`	`+ } else if (!this.grantType.match(this.config.regex.grantType)) {`
	`79`	`+ return done(error('unsupported_grant_type', 'Unsupported grant type'));`
`78`	`80`	`}`
`79`	`81`
`80`	`82`	`// Extract credentials`
`@@ -162,8 +164,7 @@ function checkGrantType (done) {`
`162`	`164`	`case 'refresh_token':`
`163`	`165`	`return useRefreshTokenGrant.call(this, done);`
`164`	`166`	`default:`
`165`		`- done(error('invalid_request',`
`166`		`- 'Invalid grant_type parameter or parameter missing'));`
	`167`	`+ done(error('unsupported_grant_type', 'Unsupported grant type'));`
`167`	`168`	`}`
`168`	`169`	`}`
`169`	`170`