Protocol/openid-connect/token return HTTP 500 instead of HTTP 400 with invalid refresh_token

yvesgab · March 17, 2023, 2:05pm

Since relase 20.0.1, when calling updateToken from keycloak.js, server return HTTP 500 instead of 400.
But in keycloak-js, updateToken call ‘login’ when receiving HTTP 400 after call to ‘protocol/openid-connect/token’ with and invalid refresh_token (token is not expired, but the session state is an older one)

Topic		Replies	Views
I cannot refresh a token with a public client	2	648	August 18, 2021
Refresh_token request returns "Session not active" Getting advice	3	4163	January 20, 2023
kc.updateToken cannot access kc.refreshToken Getting advice adapter-javascript	0	837	October 4, 2021
What is the workflow of refreshing the token, in an API-client scenario? Getting advice authentication , oidc	5	6933	December 16, 2021
Access token expires after token not updating in angular keycloak Getting advice	2	2887	June 17, 2022

Protocol/openid-connect/token return HTTP 500 instead of HTTP 400 with invalid refresh_token

Related Topics