iam:oauth:bearer

About

bearer token is a access token implementation defined in the OAuth 2.0 Authorization Framework

Format

The token may be:

a Json Web Token (JWT)
or another access token.

Usage

Any party in possession of a bearer token (a bearer) can use it to get access to the associated resources (without demonstrating possession of a cryptographic key) because the token is:

signed
or is known by the authorization server

Authorization header

You will find it in the authoritzation header of a HTTP request

Authorization: Bearer <token>
Authorization: Bearer some+base64+string

Glossary

Bearer-Only

When an authentication is bearer-only, it means that the authentication requires a authorization header

¹⁾ ²⁾

¹⁾

The OAuth 2.0 Authorization Framework: Bearer Token Usage

²⁾

https://tools.ietf.org/html/rfc6750

Table of Contents

About

Format

Usage

Authorization header

Bearer-Only