Details
-
Bug
-
Resolution: Unresolved
-
P2: Important
-
None
-
5.10.0
-
None
Description
QOAuth2AuthorizationCodeFlowPrivate::_q_accessTokenRequestFinished() overwrites current scope with the value from incoming parameter map. There is no requirement that the scope will be returned by the server, which implies the scope gets unconditionally cleared when the token is fetched.