CHANGELOG.md

oauth2-errors Changelog

2.1.0 - 2021-08-23

Added

• Add DOMException names to errors, for finer-grained error reporting.

2.0.0 - 2021-08-22

Changed

• BREAKING: Change HTTP response status codes (were previously all 400), see PR ralucas#2 discussion for details. Specifically:
  • invalid_client - change from 400 to 401 status code.
  • access_denied - changed from 400 to 403
  • server_error - changed from 400 to 500
  • temporarily_unavailable - changed from 400 to 503

Added

• Add new errors from (RFC6750) The OAuth 2.0 Authorization Framework: Bearer Token Usage:
  • invalid_token - with http status code 401.
  • insufficient_scope - with http status code 403.

<= 1.0.3

See Github commit history for details.