`invalid_scope` status code should be 400

author: Benjamin Pereto <benjamin@sandchaschte.ch> 2018-12-03 17:59:25 +0100
committer: Benjamin Pereto <benjamin@sandchaschte.ch> 2018-12-03 17:59:25 +0100
commit: ea849f66a92f6ce78cae6574e8d20a19a267ac96 (patch)
tree: b9d1a92d6bf7dc7421baf1b160229fbf073fcffa /oauthlib/oauth2
parent: 719a5f3bc62465ab8502442458c72016bf91b7cd (diff)
download: oauthlib-ea849f66a92f6ce78cae6574e8d20a19a267ac96.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/oauthlib/oauth2/rfc6749/errors.py b/oauthlib/oauth2/rfc6749/errors.py
index 7ead3d4..678fcff 100644
--- a/oauthlib/oauth2/rfc6749/errors.py
+++ b/oauthlib/oauth2/rfc6749/errors.py
@@ -199,9 +199,11 @@ class UnsupportedResponseTypeError(OAuth2Error):
 class InvalidScopeError(OAuth2Error):
     """
     The requested scope is invalid, unknown, or malformed.
+
+    https://tools.ietf.org/html/rfc6749#section-5.2
     """
     error = 'invalid_scope'
-    status_code = 401
+    status_code = 400
 
 
 class ServerError(OAuth2Error):
author	Benjamin Pereto <benjamin@sandchaschte.ch>	2018-12-03 17:59:25 +0100
committer	Benjamin Pereto <benjamin@sandchaschte.ch>	2018-12-03 17:59:25 +0100
commit	ea849f66a92f6ce78cae6574e8d20a19a267ac96 (patch)
tree	b9d1a92d6bf7dc7421baf1b160229fbf073fcffa /oauthlib/oauth2
parent	719a5f3bc62465ab8502442458c72016bf91b7cd (diff)
download	oauthlib-ea849f66a92f6ce78cae6574e8d20a19a267ac96.tar.gz