Merge pull request #662 from AdamWill/oauth2-fix-introspect-endpoint

OAuth2Client: use correct auth method for token introspection
lepture · Feb 21, 2025 · b79d868 · b79d868
2 parents 24c2bd8 + 7cadb79
commit b79d868
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/authlib/oauth2/client.py b/authlib/oauth2/client.py
@@ -338,6 +338,8 @@ def revoke_token(
 
         .. _`RFC7009`: https://tools.ietf.org/html/rfc7009
         """
+        if auth is None:
+            auth = self.client_auth(self.revocation_endpoint_auth_method)
         return self._handle_token_hint(
             "revoke_token_request",
             url,
@@ -373,6 +375,8 @@ def introspect_token(
 
         .. _`RFC7662`: https://tools.ietf.org/html/rfc7662
         """
+        if auth is None:
+            auth = self.client_auth(self.token_endpoint_auth_method)
         return self._handle_token_hint(
             "introspect_token_request",
             url,