fix: access tokens for service users and refresh token infos (#1779)

* fix: access token for service user * handle info from refresh request * uniqueness * postpone access token uniqueness change
2025-08-11 19:07:30 +00:00 · 2021-05-26 09:01:07 +02:00
parent 070abae6d9
commit bf4c4d881d
7 changed files with 46 additions and 21 deletions
--- a/internal/command/user.go
+++ b/internal/command/user.go
@@ -211,7 +211,7 @@ func (c *Commands) RemoveUser(ctx context.Context, userID, resourceOwner string,
 }

 func (c *Commands) AddUserToken(ctx context.Context, orgID, agentID, clientID, userID string, audience, scopes []string, lifetime time.Duration) (*domain.Token, error) {
-	if orgID == "" || userID == "" {
+	if userID == "" { //do not check for empty orgID (JWT Profile requests won't provide it, so service user requests fail)
 		return nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-Dbge4", "Errors.IDMissing")
 	}
 	userWriteModel := NewUserWriteModel(userID, orgID)