oauth_base.rb in rodauth-oauth-0.10.1

- old
+ new

@@ -587,10 +587,10 @@
 
     def create_oauth_token_from_token(oauth_token, update_params)
       redirect_response_error("invalid_grant") unless token_from_application?(oauth_token, oauth_application)
 
       rescue_from_uniqueness_error do
-        oauth_tokens_ds = db[oauth_tokens_table]
+        oauth_tokens_ds = db[oauth_tokens_table].where(oauth_tokens_id_column => oauth_token[oauth_tokens_id_column])
         access_token = _generate_access_token(update_params)
 
         if oauth_refresh_token_protection_policy == "rotation"
           update_params = {
             **update_params,