Doorkeeper v5.5.1 Release Notes

    • [#1496] Revoke old_refresh_token if previous_refresh_token is present.
    • [#1495] Fix respond_to undefined in API-only mode
    • [#1488] Verify client authentication for Resource Owner Password Grant when config.skip_client_authentication_for_password_grant is set and the client credentials are sent in a HTTP Basic auth header.