Is the refresh token revoked after use

This test checks if the token endpoint revokes an old refresh token if a new one is issued to the client.

View source code on GitHub


This test is part of the following document(s):

Back to the test case overview or the threat overview