0

Whenever my IsAuthorizationValid method in my IAuthorizationServer implementation returns false, AuthorizationServer.HandleTokenRequest gives me an invalid_request response. I was expecting something like invalid_scope or authorization_expired.

Any ideas?

Ian1971
  • 3,666
  • 7
  • 33
  • 61

1 Answers1

1

OAuth 2 error codes aren't correctly implemented in DotNetOpenAuth v4.0.x. v4.1 improves it significantly but hasn't been released yet.

Andrew Arnott
  • 80,040
  • 26
  • 132
  • 171