Authentication Demos

Each endpoint issues a real WWW-Authenticate challenge and reflects the parsed request back once authenticated.

BasicBasic

Browser-native credential dialog. Encodes username:password as base64.

Challenge
Basic realm="demo"
/demo/basic →
DigestDigest

Challenge–response scheme. Never sends the password in clear text.

Challenge
Digest realm="demo", nonce="…", algorithm=MD5, qop="auth"
/demo/digest →
BearerBearer

Token-based auth. Returns JSON with parsed JWT header and payload.

Challenge
Bearer realm="demo", scope="read"
/demo/bearer →interactive client →
Bearer2 (RFC 9728)Bearer

OAuth 2.0 Protected Resource Metadata discovery via WWW-Authenticate.

Challenge
Bearer resource_metadata="…"
/demo/bearer2 →interactive client →