From bc6c2a4a98ce1009d8caf25339060cf21e0dc103 Mon Sep 17 00:00:00 2001
From: julius <julius@0124816.xyz>
Date: Wed, 5 Mar 2025 11:45:47 +0100
Subject: [PATCH] fix: give the token all available scopes for user

---
 security.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/security.py b/security.py
index d3abe56..0c6f5d1 100644
--- a/security.py
+++ b/security.py
@@ -143,7 +143,7 @@ async def login_for_access_token(
     allowed_scopes = set(user.scopes.split())
     requested_scopes = set(form_data.scopes)
     access_token = create_access_token(
-        data={"sub": user.username, "scopes": list(allowed_scopes & requested_scopes)},
+        data={"sub": user.username, "scopes": list(allowed_scopes)},
         expires_delta=access_token_expires,
     )
     response.set_cookie(