POST a tools/list request with a bearer token; if the server challenges with 401/403 (insufficient scope), return the WWW-Authenticate header. Used to detect step-up authorization requirements.
POST a tools/list request with a bearer token; if the server challenges with 401/403 (insufficient scope), return the WWW-Authenticate header. Used to detect step-up authorization requirements.