fix(api): Change InvalidAssertions error code to 401

Based on comments in mozilla/fxa-oauth-server#234
mozilla · Jun 8, 2015 · 2781b3a · 2781b3a
1 parent ef8c47a
commit 2781b3a
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/lib/error.js b/lib/error.js
@@ -90,7 +90,7 @@ AppError.unknownClient = function unknownClient(clientId) {
 
 AppError.incorrectSecret = function incorrectSecret(clientId) {
   return new AppError({
-    code: 400,
+    code: 401,
     error: 'Bad Request',
     errno: 102,
     message: 'Incorrect secret'

diff --git a/test/api.js b/test/api.js
@@ -631,7 +631,7 @@ describe('/v1', function() {
             code: unique.code().toString('hex')
           }
         }).then(function(res) {
-          assert.equal(res.statusCode, 400);
+          assert.equal(res.statusCode, 401);
           assert.equal(res.result.message, 'Incorrect secret');
         }).done(done, done);
       });