rm comma after Bearer in WWW-Authenticate header

oauthlib · Nov 14, 2021 · f671011 · f671011
1 parent ff24e70
commit f671011
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 9 deletions.
diff --git a/oauthlib/oauth2/rfc6749/errors.py b/oauthlib/oauth2/rfc6749/errors.py
@@ -103,15 +103,12 @@ def headers(self):
             value "Bearer".  This scheme MUST be followed by one or more
             auth-param values.
             """
-            authvalues = [
-                "Bearer",
-                'error="{}"'.format(self.error)
-            ]
+            authvalues = ['error="{}"'.format(self.error)]
             if self.description:
                 authvalues.append('error_description="{}"'.format(self.description))
             if self.uri:
                 authvalues.append('error_uri="{}"'.format(self.uri))
-            return {"WWW-Authenticate": ", ".join(authvalues)}
+            return {"WWW-Authenticate": "Bearer " + ", ".join(authvalues)}
         return {}
 
 

diff --git a/tests/oauth2/rfc6749/endpoints/test_introspect_endpoint.py b/tests/oauth2/rfc6749/endpoints/test_introspect_endpoint.py
@@ -87,7 +87,7 @@ def test_introspect_token_client_authentication_failed(self):
             'Content-Type': 'application/json',
             'Cache-Control': 'no-store',
             'Pragma': 'no-cache',
-            "WWW-Authenticate": 'Bearer, error="invalid_client"'
+            "WWW-Authenticate": 'Bearer error="invalid_client"'
         })
         self.assertEqual(loads(b)['error'], 'invalid_client')
         self.assertEqual(s, 401)
@@ -115,7 +115,7 @@ def test_introspect_token_public_client_authentication_failed(self):
             'Content-Type': 'application/json',
             'Cache-Control': 'no-store',
             'Pragma': 'no-cache',
-            "WWW-Authenticate": 'Bearer, error="invalid_client"'
+            "WWW-Authenticate": 'Bearer error="invalid_client"'
         })
         self.assertEqual(loads(b)['error'], 'invalid_client')
         self.assertEqual(s, 401)

diff --git a/tests/oauth2/rfc6749/endpoints/test_revocation_endpoint.py b/tests/oauth2/rfc6749/endpoints/test_revocation_endpoint.py
@@ -55,7 +55,7 @@ def test_revoke_token_client_authentication_failed(self):
             'Content-Type': 'application/json',
             'Cache-Control': 'no-store',
             'Pragma': 'no-cache',
-            "WWW-Authenticate": 'Bearer, error="invalid_client"'
+            "WWW-Authenticate": 'Bearer error="invalid_client"'
         })
         self.assertEqual(loads(b)['error'], 'invalid_client')
         self.assertEqual(s, 401)
@@ -83,7 +83,7 @@ def test_revoke_token_public_client_authentication_failed(self):
             'Content-Type': 'application/json',
             'Cache-Control': 'no-store',
             'Pragma': 'no-cache',
-            "WWW-Authenticate": 'Bearer, error="invalid_client"'
+            "WWW-Authenticate": 'Bearer error="invalid_client"'
         })
         self.assertEqual(loads(b)['error'], 'invalid_client')
         self.assertEqual(s, 401)