From 1406aeefb0791860e9132ae7b7e7bfe98156749e Mon Sep 17 00:00:00 2001
From: Andrew Gerrand <adg@golang.org>
Date: Sat, 7 Feb 2015 21:27:57 +0000
Subject: [PATCH] oauth2: clarify comment about tokenRefresher's thread safety

Change-Id: I9a3faedb8faf7701be7c82c7fff964b56d7c96c8
Reviewed-on: https://go-review.googlesource.com/4116
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
---
 oauth2.go | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/oauth2.go b/oauth2.go
index 396f11b..42aeb34 100644
--- a/oauth2.go
+++ b/oauth2.go
@@ -250,6 +250,10 @@ type tokenRefresher struct {
 	refreshToken string
 }
 
+// WARNING: Token is not safe for concurrent access, as it
+// updates the tokenRefresher's refreshToken field.
+// Within this package, it is used by reuseTokenSource which
+// synchronizes calls to this method with its own mutex.
 func (tf *tokenRefresher) Token() (*Token, error) {
 	if tf.refreshToken == "" {
 		return nil, errors.New("oauth2: token expired and refresh token is not set")
@@ -263,9 +267,7 @@ func (tf *tokenRefresher) Token() (*Token, error) {
 	if err != nil {
 		return nil, err
 	}
-	if tk.RefreshToken != tf.refreshToken {
-		// possible race condition avoided because tokenRefresher
-		// should be protected by reuseTokenSource.mu
+	if tf.refreshToken != tk.RefreshToken {
 		tf.refreshToken = tk.RefreshToken
 	}
 	return tk, err