Closed mattlaw closed 3 years ago
When presented with the header Authorization: Bearer (with no token), is it correct that verify_token_and_scope invokes the verify_access_token callback with an undefined access_token?
Authorization: Bearer
verify_token_and_scope
verify_access_token
access_token
Nope, that's a bug!
When presented with the header
Authorization: Bearer
(with no token), is it correct thatverify_token_and_scope
invokes theverify_access_token
callback with an undefinedaccess_token
?