5 files changed, 42 insertions, 6 deletions

diff --git a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.Designer.cs b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.Designer.cs
index 43a97f3..4b4f830 100644
--- a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.Designer.cs
+++ b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.Designer.cs
@@ -1,7 +1,7 @@
 //------------------------------------------------------------------------------
 // <auto-generated>
 //     This code was generated by a tool.
-//     Runtime Version:4.0.30319.17611
+//     Runtime Version:4.0.30319.17614
 //
 //     Changes to this file may cause incorrect behavior and will be lost if
 //     the code is regenerated.
@@ -70,6 +70,24 @@ namespace DotNetOpenAuth.OAuth2 {
         }
         
         /// <summary>
+        ///   Looks up a localized string similar to The callback URL ({0}) is not allowed for this client..
+        /// </summary>
+        internal static string ClientCallbackDisallowed {
+            get {
+                return ResourceManager.GetString("ClientCallbackDisallowed", resourceCulture);
+            }
+        }
+        
+        /// <summary>
+        ///   Looks up a localized string similar to Failure looking up secret for client or token..
+        /// </summary>
+        internal static string ClientOrTokenSecretNotFound {
+            get {
+                return ResourceManager.GetString("ClientOrTokenSecretNotFound", resourceCulture);
+            }
+        }
+        
+        /// <summary>
         ///   Looks up a localized string similar to The client secret was incorrect..
         /// </summary>
         internal static string ClientSecretMismatch {
@@ -86,5 +104,14 @@ namespace DotNetOpenAuth.OAuth2 {
                 return ResourceManager.GetString("InvalidResourceOwnerPasswordCredential", resourceCulture);
             }
         }
+        
+        /// <summary>
+        ///   Looks up a localized string similar to No callback URI was available for this request..
+        /// </summary>
+        internal static string NoCallback {
+            get {
+                return ResourceManager.GetString("NoCallback", resourceCulture);
+            }
+        }
     }
 }
diff --git a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.resx b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.resx
index 82b3e81..29d841a 100644
--- a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.resx
+++ b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerStrings.resx
@@ -120,10 +120,19 @@
   <data name="AccessScopeExceedsGrantScope" xml:space="preserve">
     <value>The requested access scope exceeds the grant scope.</value>
   </data>
+  <data name="ClientCallbackDisallowed" xml:space="preserve">
+    <value>The callback URL ({0}) is not allowed for this client.</value>
+  </data>
+  <data name="ClientOrTokenSecretNotFound" xml:space="preserve">
+    <value>Failure looking up secret for client or token.</value>
+  </data>
   <data name="ClientSecretMismatch" xml:space="preserve">
     <value>The client secret was incorrect.</value>
   </data>
   <data name="InvalidResourceOwnerPasswordCredential" xml:space="preserve">
     <value>Invalid resource owner password credential.</value>
   </data>
+  <data name="NoCallback" xml:space="preserve">
+    <value>No callback URI was available for this request.</value>
+  </data>
 </root>
\ No newline at end of file
diff --git a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerUtilities.cs b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerUtilities.cs
index a59eaa7..dbb1279 100644
--- a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerUtilities.cs
+++ b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthServerUtilities.cs
@@ -32,9 +32,9 @@ namespace DotNetOpenAuth.OAuth2 {
 				ErrorUtilities.VerifyHost(result != null, OAuthStrings.ResultShouldNotBeNull, authorizationServer.GetType().FullName, "GetClient(string)");
 				return result;
 			} catch (KeyNotFoundException ex) {
-				throw ErrorUtilities.Wrap(ex, OAuthStrings.ClientOrTokenSecretNotFound);
+				throw ErrorUtilities.Wrap(ex, AuthServerStrings.ClientOrTokenSecretNotFound);
 			} catch (ArgumentException ex) {
-				throw ErrorUtilities.Wrap(ex, OAuthStrings.ClientOrTokenSecretNotFound);
+				throw ErrorUtilities.Wrap(ex, AuthServerStrings.ClientOrTokenSecretNotFound);
 			}
 		}
 
diff --git a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthorizationServer.cs b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthorizationServer.cs
index 7770163..70d7838 100644
--- a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthorizationServer.cs
+++ b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/AuthorizationServer.cs
@@ -237,7 +237,7 @@ namespace DotNetOpenAuth.OAuth2 {
 			// Since the request didn't include a callback URL, look up the callback from
 			// the client's preregistration with this authorization server.
 			Uri defaultCallback = client.DefaultCallback;
-			ErrorUtilities.VerifyProtocol(defaultCallback != null, OAuthStrings.NoCallback);
+			ErrorUtilities.VerifyProtocol(defaultCallback != null, AuthServerStrings.NoCallback);
 			return defaultCallback;
 		}
 
diff --git a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/ChannelElements/MessageValidationBindingElement.cs b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/ChannelElements/MessageValidationBindingElement.cs
index 43ce243..be4f70d 100644
--- a/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/ChannelElements/MessageValidationBindingElement.cs
+++ b/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/ChannelElements/MessageValidationBindingElement.cs
@@ -115,8 +115,8 @@ namespace DotNetOpenAuth.OAuth2.ChannelElements {
 			var authorizationRequest = message as EndUserAuthorizationRequest;
 			if (authorizationRequest != null) {
 				var client = this.AuthorizationServer.GetClientOrThrow(authorizationRequest.ClientIdentifier);
-				ErrorUtilities.VerifyProtocol(authorizationRequest.Callback == null || client.IsCallbackAllowed(authorizationRequest.Callback), OAuthStrings.ClientCallbackDisallowed, authorizationRequest.Callback);
-				ErrorUtilities.VerifyProtocol(authorizationRequest.Callback != null || client.DefaultCallback != null, OAuthStrings.NoCallback);
+				ErrorUtilities.VerifyProtocol(authorizationRequest.Callback == null || client.IsCallbackAllowed(authorizationRequest.Callback), AuthServerStrings.ClientCallbackDisallowed, authorizationRequest.Callback);
+				ErrorUtilities.VerifyProtocol(authorizationRequest.Callback != null || client.DefaultCallback != null, AuthServerStrings.NoCallback);
 				applied = true;
 			}