From 63a9c4d532c849a0850586ab932f907bb0d7d25f Mon Sep 17 00:00:00 2001
From: Sankalp Bhatia <sankal@amazon.com>
Date: Mon, 4 Dec 2023 23:24:46 -0800
Subject: [PATCH] Add refreshing of credentials before Oauth token generation

---
 .../amazon/msk/auth/iam/IAMOAuthBearerLoginCallbackHandler.java  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/main/java/software/amazon/msk/auth/iam/IAMOAuthBearerLoginCallbackHandler.java b/src/main/java/software/amazon/msk/auth/iam/IAMOAuthBearerLoginCallbackHandler.java
index fac42c9..dc5018b 100644
--- a/src/main/java/software/amazon/msk/auth/iam/IAMOAuthBearerLoginCallbackHandler.java
+++ b/src/main/java/software/amazon/msk/auth/iam/IAMOAuthBearerLoginCallbackHandler.java
@@ -136,6 +136,7 @@ private void handleCallback(OAuthBearerTokenCallback callback) throws IOExceptio
         if (callback.token() != null) {
             throw new IllegalArgumentException("Callback had a token already");
         }
+        credentialsProvider.refresh();
         AWSCredentials awsCredentials = credentialsProvider.getCredentials();
 
         // Generate token value i.e. Base64 encoded pre-signed URL string