Add unsupported_grant_type error

thomseddon · thomseddon · commit 24fdd8a9e39f · 2015-01-26T21:21:14.000Z
See spec: http://tools.ietf.org/html/rfc6749#section-5.2
diff --git a/lib/error.js b/lib/error.js
@@ -43,6 +43,7 @@ function OAuth2Error (error, description, err) {
   switch (error) {
     case 'invalid_grant':
     case 'invalid_request':
+    case 'unsupported_grant_type':
       this.code = 400;
       break;
     case 'invalid_client':
diff --git a/lib/grant.js b/lib/grant.js
@@ -73,9 +73,11 @@ function extractCredentials (done) {
 
   // Grant type
   this.grantType = this.req.body && this.req.body.grant_type;
-  if (!this.grantType || !this.grantType.match(this.config.regex.grantType)) {
+  if (!this.grantType) {
     return done(error('invalid_request',
       'Invalid or missing grant_type parameter'));
+  } else if (!this.grantType.match(this.config.regex.grantType)) {
+    return done(error('unsupported_grant_type', 'Unsupported grant type'));
   }
 
   // Extract credentials
@@ -165,8 +167,7 @@ function checkGrantType (done) {
     case 'client_credentials':
       return useClientCredentialsGrant.call(this, done);
     default:
-      done(error('invalid_request',
-        'Invalid grant_type parameter or parameter missing'));
+      done(error('unsupported_grant_type', 'Unsupported grant type'));
   }
 }
 
diff --git a/test/grant.extended.js b/test/grant.extended.js
@@ -60,7 +60,7 @@ describe('Granting with extended grant type', function () {
         client_id: 'thom',
         client_secret: 'nightworld'
       })
-      .expect(400, /invalid grant_type/i, done);
+      .expect(400, /unsupported grant type/i, done);
   });
 
   it('should still detect unsupported grant_type', function (done) {
diff --git a/test/grant.js b/test/grant.js
@@ -83,7 +83,7 @@ describe('Grant', function() {
         .post('/oauth/token')
         .set('Content-Type', 'application/x-www-form-urlencoded')
         .send({ grant_type: 'password' })
-        .expect(400, /invalid or missing grant_type parameter/i, done);
+        .expect(400, /unsupported grant type/i, done);
     });
 
     it('should check client_id exists', function (done) {
@@ -179,7 +179,7 @@ describe('Grant', function() {
         .post('/oauth/token')
         .set('Content-Type', 'application/x-www-form-urlencoded')
         .send({ grant_type: 'password', client_id: 'thom', client_secret: 'nightworld' })
-        .expect(400, /invalid or missing grant_type/i, done);
+        .expect(400, /unsupported grant type/i, done);
     });
   });
 

Original file line number	Diff line number	Diff line change
`@@ -73,9 +73,11 @@ function extractCredentials (done) {`
`73`	`73`
`74`	`74`	`// Grant type`
`75`	`75`	`this.grantType = this.req.body && this.req.body.grant_type;`
`76`		`- if (!this.grantType \|\| !this.grantType.match(this.config.regex.grantType)) {`
	`76`	`+ if (!this.grantType) {`
`77`	`77`	`return done(error('invalid_request',`
`78`	`78`	`'Invalid or missing grant_type parameter'));`
	`79`	`+ } else if (!this.grantType.match(this.config.regex.grantType)) {`
	`80`	`+ return done(error('unsupported_grant_type', 'Unsupported grant type'));`
`79`	`81`	`}`
`80`	`82`
`81`	`83`	`// Extract credentials`
`@@ -165,8 +167,7 @@ function checkGrantType (done) {`
`165`	`167`	`case 'client_credentials':`
`166`	`168`	`return useClientCredentialsGrant.call(this, done);`
`167`	`169`	`default:`
`168`		`- done(error('invalid_request',`
`169`		`- 'Invalid grant_type parameter or parameter missing'));`
	`170`	`+ done(error('unsupported_grant_type', 'Unsupported grant type'));`
`170`	`171`	`}`
`171`	`172`	`}`
`172`	`173`