From 7a5e33d26564426f135d53f7d2f358c68c537cd1 Mon Sep 17 00:00:00 2001
From: miklish <michael.christoff@alumni.utoronto.ca>
Date: Wed, 4 Dec 2019 14:44:55 -0500
Subject: [PATCH] Fixed issue where new refresh tokens were stored with the key
 of old (revoked) refresh tokens. References issue #215

---
 .../networknt/oauth/token/handler/Oauth2TokenPostHandler.java   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/token/src/main/java/com/networknt/oauth/token/handler/Oauth2TokenPostHandler.java b/token/src/main/java/com/networknt/oauth/token/handler/Oauth2TokenPostHandler.java
index aa627dd6..67a2f7f3 100644
--- a/token/src/main/java/com/networknt/oauth/token/handler/Oauth2TokenPostHandler.java
+++ b/token/src/main/java/com/networknt/oauth/token/handler/Oauth2TokenPostHandler.java
@@ -428,7 +428,7 @@ private Map<String, Object> handleRefreshToken(HttpServerExchange exchange, Map<
                     newToken.setRoles(roles);
                     newToken.setClientId(client.getClientId());
                     newToken.setScope(scope);
-                    tokens.put(refreshToken, newToken);
+                    tokens.put(newRefreshToken, newToken);
                     // if the client type is external, save the jwt to reference map and send the reference
                     if(Client.ClientTypeEnum.EXTERNAL == client.getClientType()) {
                         jwt = jwtReference(jwt, client.getDerefClientId());