Check grant type in ValidationTokenRequest For some reason there's a CheckGrantType on server which is never actually called to verify whether the grant type is one of the supported ones. This adds the check early in the chain to ensure we return a helpful error when an unsupported grant type is used.