This test checks if the refresh token is bound to a specific client.
View source code on GitHub
This test is part of the following document(s):
Back to the test case overview or the threat overview