Merge branch 'main' into bugfix-adk-sessions

luis5tb · web-flow · commit 227910ab14ed · 2026-03-26T16:33:47.000+01:00
diff --git a/src/lightspeed_agent/auth/middleware.py b/src/lightspeed_agent/auth/middleware.py
@@ -10,6 +10,7 @@
 from starlette.responses import JSONResponse
 
 from lightspeed_agent.auth.introspection import (
+    DisallowedScopeError,
     InsufficientScopeError,
     TokenValidationError,
     get_token_introspector,
@@ -123,6 +124,9 @@ async def dispatch(
             _request_access_token.set((token, user.token_exp))
             _request_order_id.set(order_id)
             logger.debug("Authenticated user: %s", user.user_id)
+        except DisallowedScopeError as e:
+            logger.warning("Disallowed scope: %s", e)
+            return self._forbidden_response(str(e))
         except InsufficientScopeError as e:
             logger.warning("Insufficient scope: %s", e)
             return self._forbidden_response(str(e))
