BUG - Endpoint GET /oauth/refresh is not returning passport permissions

Steps how to reproduce the issue:


**Prerequisites:** Have an active login session in Ego with a user registered with a Passport broker: 
1) EGO JWT token
2) EGO refresh token cookie stored in browser as `refreshId`

**Steps:**
Call POST `/oauth/refresh` (using POSTMAN)
Header:
Cookie: refreshId=[REFRESH_TOKEN_HERE]
Authorization: bearer [EGO_TOKEN_HERE]


**Expected Response:**
- a new EGO JWT token that includes scopes based on passport permission.
- a new EGO refresh token 

**Actual response:**
- a new EGO JWT token that **does not** include scopes based on passport permission.
- a new EGO refresh token 

**Tentative solution:**
use refresh token provided by Passport broker instead of the usual EGO refresh token

**Endpoint used by:**
platform-api and workflow-ui

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

BUG - Endpoint GET /oauth/refresh is not returning passport permissions #723

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

BUG - Endpoint GET /oauth/refresh is not returning passport permissions #723

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions