Fixed missing support for scope for refresh_token grant. https://tools.ietf.org/html/rfc6749#section-6

tlxtellef · kullfar · commit b4fb7f816ef8 · 2018-03-22T10:50:41.000+03:00
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/oauth/OAuth20Service.java b/scribejava-core/src/main/java/com/github/scribejava/core/oauth/OAuth20Service.java
@@ -148,8 +148,14 @@ protected OAuthRequest createRefreshTokenRequest(String refreshToken) {
             throw new IllegalArgumentException("The refreshToken cannot be null or empty");
         }
         final OAuthRequest request = new OAuthRequest(api.getAccessTokenVerb(), api.getRefreshTokenEndpoint());
+        final OAuthConfig config = getConfig();
 
-        api.getClientAuthenticationType().addClientAuthentication(request, getConfig());
+        api.getClientAuthenticationType().addClientAuthentication(request, config);
+
+        final String scope = config.getScope();
+        if (scope != null) {
+            request.addParameter(OAuthConstants.SCOPE, scope);
+        }
 
         request.addParameter(OAuthConstants.REFRESH_TOKEN, refreshToken);
         request.addParameter(OAuthConstants.GRANT_TYPE, OAuthConstants.REFRESH_TOKEN);
