Sorry, please ignore 2nd question.
WWW-Authenticate header isn’t needed in this case.
> 2021/07/29 10:08、nov matake のメール:
>
> Hi,
>
> I have 2 questions about RFC 7523’s error cases.
>
> 1st one is about section 3.2, which requires “invalid_client” error when
> client assertion JWT is invalid.
Hi,
I have 2 questions about RFC 7523’s error cases.
1st one is about section 3.2, which requires “invalid_client” error when client
assertion JWT is invalid.
In such case, what scheme is expected for WWW-Authentication header? I believe
it’s not Basic, but not sure what is appropriate.
https:/
