def _get_refresh_token(self): """ Generate an access token after refresh authorization. """ access_token = AccessTokenDAO.get_token_by_refresh(self.refresh_token) access_token = AccessTokenDAO.update(access_token.id) return access_token
def _validate_refresh_token(self): """ Validate a refresh token request. """ if not self.refresh_token: raise InvalidRequest('未设置参数:refresh_token') self.access_token = AccessTokenDAO.get_token_by_refresh(self.refresh_token) if not self.access_token: raise InvalidRequest('No such refresh token: %s' % self.refresh_token) if not self.access_token.refreshable: raise InvalidGrant("Access token is not refreshable.")