Enrich 403 error
The solid-auth-client
lib used by solid-auth
component do not send the access bearer token to all requests by default. Its only done when the host is white-listed and explicitly requires the credentials.
To do this, solid-auth-client
lib makes a first request without the token, and then if this request is 403, and if the www-authenticate
header is set with “scheme=Bearer” and “params.scope=openid webid” values, then the host is added to the whitelist and the request is done a second time with the token attached.
I think DjangoLDP should provide this headers in 403 responses.