Hi @bbockelm , i can't answer exactly so i will just spit out all i know :) So, on the server part the configuration is like this: xrootd part ``` ofs.authorize ofs.authlib /usr/lib64/libXrdAliceTokenAcc.so ``` the http part: ``` # Pass the bearer token to the Xrootd authorization framework. http.header2cgi Authorization authz http.header2cgi authz authz ``` these were added by me as i understood from https://xrootd.slac.stanford.edu/doc/dev48/xrd_config.htm#_Toc496911356 that this directive converts a given Header to a cgi part, and the cgi is named `authz` so, i added these rules to convert to authz cgi any header named either Authorization or authz but in the same time i'm not sure if this is correct as the ALICE curl tests are of the form `curl -i -L http://FQDN:PORT/FILEPATH?authz=...` so i'm not sure if that authz is taken as authz cgi or not -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/1320#issuecomment-723480171 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1