From b36d9c485016a89b8a8a87a387f3a7388d142af6 Mon Sep 17 00:00:00 2001
From: Benjamin Bourgeais <wixdesq@gmail.com>
Date: Sun, 19 Jul 2020 19:00:17 +0200
Subject: [PATCH] Fix client secret not being checked

---
 manage/manager.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/manage/manager.go b/manage/manager.go
index 5d6511d..b8fb01e 100755
--- a/manage/manager.go
+++ b/manage/manager.go
@@ -261,7 +261,7 @@ func (m *Manager) GenerateAccessToken(ctx context.Context, gt oauth2.GrantType,
 		if !cliPass.VerifyPassword(tgr.ClientSecret) {
 			return nil, errors.ErrInvalidClient
 		}
-	} else if len(tgr.ClientSecret) > 0 && tgr.ClientSecret != cli.GetSecret() {
+	} else if len(cli.GetSecret()) > 0 && tgr.ClientSecret != cli.GetSecret() {
 		return nil, errors.ErrInvalidClient
 	}
 	if tgr.RedirectURI != "" {