From bdc1c5ad2fdcfed340f1a019ceb8e46fca4d54f2 Mon Sep 17 00:00:00 2001
From: Mond WAN <mondwan.1015@gmail.com>
Date: Fri, 25 Jul 2025 20:52:31 +0100
Subject: [PATCH] oauth2_session.py honours self.verify instead

refresh_token() & fetch_token() does not honour the settings from requests.Session().verify.
---
 requests_oauthlib/oauth2_session.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requests_oauthlib/oauth2_session.py b/requests_oauthlib/oauth2_session.py
index 93cc4d7..79c2846 100644
--- a/requests_oauthlib/oauth2_session.py
+++ b/requests_oauthlib/oauth2_session.py
@@ -384,7 +384,7 @@ def fetch_token(
             timeout=timeout,
             headers=headers,
             auth=auth,
-            verify=verify,
+            verify=verify if verify is not None else self.verify,
             proxies=proxies,
             cert=cert,
             **request_kwargs
@@ -479,7 +479,7 @@ def refresh_token(
             auth=auth,
             timeout=timeout,
             headers=headers,
-            verify=verify,
+            verify=verify if verify is not None else self.verify,
             withhold_token=True,
             proxies=proxies,
         )