When a not authorized access is made the header has "invalid_token"

kaleidos / grails-security-stateless

Grails plugin to implement stateless authentication using Spring Security

Apache License 2.0

17 stars 8 forks source link

Open Alotor opened 9 years ago

Alotor commented 9 years ago

This a normal unauthorized code but the token is correct so it shouldn't be a "invalid_token"

HTTP/1.1 401 Unauthorized
Server: Apache-Coyote/1.1
WWW-Authenticate: Bearer error="invalid_token"

yamila-moreno commented 9 years ago

I got sometimes this "invalid_token" and sometimes the "access denied" (this is the expected as I know).