• #dev 2023-06-23
  • Prev
    Next
  • #indieweb
  • #dev
  • #wordpress
  • #meta
  • #stream
  • #microformats
  • #known
  • #events
#dev ≡
  • ←
  • →
2023-06-23 UTC
# 18:05
Zegnat [jacky]: if you send scopes when using a refresh token to gain a new access token, the "requested scope MUST NOT include any scope not originally granted". So you can only go to fewer scopes, not add scopes. https://datatracker.ietf.org/doc/html/rfc6749#section-6