From 493834fcbf4d2778533b15447da381573308f6dd Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 22 Mar 2013 10:35:42 +0000 Subject: [PATCH] Removed base64 decoding of token when present in authorization header. Fixes #23 --- src/OAuth2/ResourceServer.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/OAuth2/ResourceServer.php b/src/OAuth2/ResourceServer.php index 05359de7..195f98ed 100644 --- a/src/OAuth2/ResourceServer.php +++ b/src/OAuth2/ResourceServer.php @@ -215,7 +215,7 @@ class ResourceServer protected function determineAccessToken() { if ($header = $this->getRequest()->header('Authorization')) { - $access_token = base64_decode(trim(str_replace('Bearer', '', $header))); + $access_token = trim(str_replace('Bearer', '', $header)); } else { $method = $this->getRequest()->server('REQUEST_METHOD'); $access_token = $this->getRequest()->{$method}($this->tokenKey);