mirror of
https://github.com/moodle/moodle.git
synced 2025-06-05 23:55:21 +02:00
0132037427
Changes: - The client can now be instantiated with the new mode enabled. - A user refresh token will be stored if returned as part of the authorization_code grant but only if the user is authenticated and only if the mode is enabled. - If the mode permits it, attempt to exchange a stored refresh token for a new access token during login checks, allowing access to continue across sessions without the need to re-grant consent every time. - Purge all refresh tokens for a given user, issuer and scope on client log out. This makes sure logout persists across logins.