# HG changeset patch
# User Matthew Wild <mwild1@gmail.com>
# Date 1660815418 -3600
# Node ID 5dadbe0718f11cad29f3b9f805d47988de502998
# Parent  d68348323406bd622441057f78d4f81d37737074
mod_http_oauth2: Update for new new role API

diff -r d68348323406 -r 5dadbe0718f1 mod_http_oauth2/mod_http_oauth2.lua
--- a/mod_http_oauth2/mod_http_oauth2.lua	Thu Aug 18 10:36:35 2022 +0100
+++ b/mod_http_oauth2/mod_http_oauth2.lua	Thu Aug 18 10:36:58 2022 +0100
@@ -22,13 +22,12 @@
 	if requested_scope_string then -- Specific role requested
 		-- TODO: The requested scope string is technically a space-delimited list
 		-- of scopes, but for simplicity we're mapping this slot to role names.
-		local user_roles = usermanager.get_user_roles(username, module.host);
-		if user_roles[requested_scope_string] then
+		if usermanager.user_can_assume_role(username, module.host, requested_scope_string) then
 			return requested_scope_string;
 		end
 	end
 
-	return usermanager.get_user_default_role(username, module.host).name;
+	return usermanager.get_user_role(username, module.host).name;
 end
 
 local function code_expires_in(code)