Merge pull request #2 from jnorberg/master

Passing clientSecret when initializing OAuth2 to be more compatible with RFC
leftmostcat · May 28, 2016 · b461e43 · b461e43
2 parents af15f0d + 5fe8454
commit b461e43
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/lib/strategy.js b/lib/strategy.js
@@ -22,7 +22,7 @@ function PasswordGrantStrategy(options, verify) {
   this.name = 'password-grant';
   this._verify = verify;
 
-  this._oauth2 = new OAuth2(options.clientID, '', '', '', options.tokenURL, options.customHeaders);
+  this._oauth2 = new OAuth2(options.clientID, options.clientSecret, '', '', options.tokenURL, options.customHeaders);
 
   this._passReqToCallback = options.passReqToCallback;
   this._skipUserProfile = (options.skipUserProfile === undefined) ? false : options.skipUserProfile;