SCIM Playground: Authentication with HTTP Basic #147
Description
I noticed that the ServiceProviderConfig tells me that Bearer Tokens and HTTP Basic is supported, with Tokens being the preferred one. I couldn't get HTTP Basic to work easily. I don't think it is currently possible to authenticate basic SCIM endpoints with HTTP Basic. I would suggest to remove it from the ServiceProviderConfig to represent an accurate and actually available set of features.
Alternatively, to allow HTTP Basic, there maybe could be a way to generate username and passwords similar to the access tokens, that are valid for 2h and then expire or get deleted. This would allow implementers of SCIM Clients to test HTTP Basic Authentication as well. I am not sure if this is in the scope of the product, just a suggestion :)