From b3fc25ecacb12ad432dc75fe8da6ecc355a5911d Mon Sep 17 00:00:00 2001
From: Momi-V <83947761+Momi-V@users.noreply.github.com>
Date: Mon, 3 Nov 2025 15:43:59 +0100
Subject: [PATCH] Clone refresh_claims.sub

---
 src/auth.rs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/auth.rs b/src/auth.rs
index aa3ab287..20191c91 100644
--- a/src/auth.rs
+++ b/src/auth.rs
@@ -1239,14 +1239,14 @@ pub async fn refresh_tokens(
 
     let auth_tokens = match refresh_claims.sub {
         AuthMethod::Sso if CONFIG.sso_enabled() && CONFIG.sso_auth_only_not_session() => {
-            AuthTokens::new(&device, &user, refresh_claims.sub, client_id, Some(&refresh_claims))
+            AuthTokens::new(&device, &user, refresh_claims.sub.clone(), client_id, Some(&refresh_claims))
         }
         AuthMethod::Sso if CONFIG.sso_enabled() => {
             sso::exchange_refresh_token(&device, &user, client_id, refresh_claims).await?
         }
         AuthMethod::Sso => err!("SSO is now disabled, Login again using email and master password"),
         AuthMethod::Password if CONFIG.sso_enabled() && CONFIG.sso_only() => err!("SSO is now required, Login again"),
-        AuthMethod::Password => AuthTokens::new(&device, &user, refresh_claims.sub, client_id, Some(&refresh_claims)),
+        AuthMethod::Password => AuthTokens::new(&device, &user, refresh_claims.sub.clone(), client_id, Some(&refresh_claims)),
         _ => err!("Invalid auth method, cannot refresh token"),
     };