This test checks if the active refresh token is revoked when the same (old) refresh token is presented twice at the token endpoint
View source code on GitHub
This test is part of the following document(s):
Back to the test case overview or the threat overview