fix(OAuthManager): don't expose api credentials through exception cal…

…lstack
commercetools · Sep 8, 2015 · f0caaa1 · f0caaa1
1 parent a4be01b
commit f0caaa1
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/src/Client/OAuth/Manager.php b/src/Client/OAuth/Manager.php
@@ -7,6 +7,7 @@
 namespace Commercetools\Core\Client\OAuth;
 
 
+use Commercetools\Core\Error\ApiException;
 use GuzzleHttp\Psr7\Request;
 use Psr\Http\Message\ResponseInterface;
 use Commercetools\Core\AbstractHttpClient;
@@ -142,7 +143,11 @@ protected function getBearerToken($scope)
             'scope' => $scope . ':' . $this->getConfig()->getProject()
         ];
 
-        $response = $this->execute($data);
+        try {
+            $response = $this->execute($data);
+        } catch (ApiException $exception) {
+            throw ApiException::create($exception->getRequest(), $exception->getResponse());
+        }
 
         $result = json_decode($response->getBody(), true);