RealmTeam · paulw11 · Apr 6, 2020 · Apr 14, 2020 · wagnerdelima · Apr 13, 2020
diff --git a/rest_framework_social_oauth2/oauth2_grants.py b/rest_framework_social_oauth2/oauth2_grants.py
@@ -1,4 +1,5 @@
 import logging
+import time
 
 try:
     from django.urls import reverse
@@ -90,6 +91,11 @@ def validate_token_request(self, request):
 
         try:
             user = backend.do_auth(access_token=request.token)
+            user_data = backend.user_data(access_token=request.token)
+            exp = user_data['exp']
+            if exp is not None and exp <= int(time.time()):
+               raise errors.InvalidTokenError('Token has expired', request=request)
+
         except requests.HTTPError as e:
             raise errors.InvalidRequestError(
                 description="Backend responded with HTTP{0}: {1}.".format(e.response.status_code,