BearerTokenAuthOptions
Defined in: src/http/middleware/BearerToken.ts:15
Properties
Section titled “Properties”headerName?
Section titled “headerName?”
readonlyoptionalheaderName?:string
Defined in: src/http/middleware/BearerToken.ts:28
Header name to read the token from. Default: 'authorization'.
HTTP header names are lower-cased by the framework — pass them
lower-case here too.
realm?
Section titled “realm?”
readonlyoptionalrealm?:string
Defined in: src/http/middleware/BearerToken.ts:32
Realm advertised in WWW-Authenticate on 401. Default: 'actor-ts'.
tokens
Section titled “tokens”
readonlytokens: readonlystring[]
Defined in: src/http/middleware/BearerToken.ts:22
Acceptable tokens — at least one must match the
Authorization: Bearer <token> header. Multiple entries support
rotation: emit a new token, deploy clients with the new token,
then drop the old entry.