From e4db9b2f05abc6d9fcd8ba8cdf6fb1a1d75299de Mon Sep 17 00:00:00 2001
From: Rijk van Zanten <rijkvanzanten@me.com>
Date: Wed, 5 Jan 2022 15:59:27 -0500
Subject: [PATCH] Fix refresh token payload structure on shared refresh
 (#10875)

Fixes #10822
---
 api/src/services/authentication.ts | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/api/src/services/authentication.ts b/api/src/services/authentication.ts
index 82894de340..a639ec81c5 100644
--- a/api/src/services/authentication.ts
+++ b/api/src/services/authentication.ts
@@ -321,6 +321,10 @@ export class AuthenticationService {
 				collection: record.share_collection,
 				item: record.share_item,
 			};
+			tokenPayload.app_access = false;
+			tokenPayload.admin_access = false;
+
+			delete tokenPayload.id;
 		}
 
 		const customClaims = await emitter.emitFilter(