From 5d0b7d883dfd240248e86d4c06ba63186ecceb0c Mon Sep 17 00:00:00 2001
From: Aurélien Bompard <aurelien@bompard.org>
Date: Jul 13 2022 12:43:13 +0000
Subject: Fix a logic bug in the oidc refresh token method


Signed-off-by: Aurélien Bompard <aurelien@bompard.org>

---

diff --git a/ipsilon/providers/openidc/store.py b/ipsilon/providers/openidc/store.py
index 1a3faf7..a96b011 100644
--- a/ipsilon/providers/openidc/store.py
+++ b/ipsilon/providers/openidc/store.py
@@ -212,7 +212,7 @@ class OpenIDCStore(Store):
             return None
 
         if token.get('refreshable_until') and \
-                int(token['refreshable_until']) >= int(time.time()):
+                int(token['refreshable_until']) < int(time.time()):
             return None
 
         token_security_check = generate_random_secure_string()