Closed bhojpurS closed 1 year ago
@bhojpurS: This is a duplicate to #31. apikey shouldn't be used in order to be compliant to https://github.com/camaraproject/WorkingGroups/blob/main/Commonalities/documentation/CAMARA-AuthN-AuthZ-Concept.md
Closed as duplicate of #31
Callback api seems to use 'apikey' as a security mechanism but create session api defines 'notificationAuthToken' which is conflicting. Either we should use only 'oAuth2ClientCredentials' or we should remove 'notificationAuthToken'- from create session api.