From 23ea5046bbf300dd14b0306a93850fd99e0250d4 Mon Sep 17 00:00:00 2001
From: AJ ONeal <aj@daplie.com>
Date: Wed, 8 Feb 2017 16:47:29 -0500
Subject: [PATCH] only assign Authorization when session exists

---
 oauth3.js | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/oauth3.js b/oauth3.js
index b5e42e9..035bcb1 100644
--- a/oauth3.js
+++ b/oauth3.js
@@ -141,8 +141,10 @@
 
     function lintAndRequest(preq) {
       function goGetHer() {
-        preq.headers = preq.headers || {};
-        preq.headers.Authorization = 'Bearer ' + (preq.session.access_token || preq.session.accessToken);
+        if (preq.session) {
+          preq.headers = preq.headers || {};
+          preq.headers.Authorization = 'Bearer ' + (preq.session.access_token || preq.session.accessToken);
+        }
 
         if (!oauth3._lintRequest) {
           return rawRequest(preq);