Token is expired if 'expired_at' time is now.

Peter Bolingrequested to merge
github/fork/davestevens/expired-token into master

Created by: davestevens

The expired? method on AccessToken does not take into account the current time. If expires_at is right now expired? currently returns false. Is there a reason for this? It means I can not catch a token refresh without using a rescue for OAuth2::Error after my request then then refreshing the token (which may not always be the cause of the error.

Example code of issue:

require "oauth2"

# Rails app using Doorkeeper with `access_token_expires_in` set to `2.seconds`
client_id = "abc"
client_secret = "def"
endpoint = "https://api.example.com"

client = OAuth2::Client.new(client_id, client_secret, site: endpoint)
token = client.password.get_token("username", "password")
puts token.get("/version").body

# Sleep until the Token is expired
sleep token.expires_at - Time.new.to_i
# Expect this to return true
puts token.expired? # Prints false
token = token.refresh! if token.expired?

# This request fails due to expired Token
puts token.get("/version").body

Merge request reports