B.10 Using the token to access MCX resource servers

33.1803GPPRelease 17Security of the Mission Critical (MC) serviceTS

Tools: ARFCN - Frequency Conversion for 5G NR/LTE/UMTS/GSM

MCX Connect shall initially support the bearer access token type. Access tokens of type "bearer" shall be communicated from the MCX client to MCX resource servers by including the access token in the HTTP Authorization Header, per IETF RFC 6750 [20].

The access token is opaque to the MCX client, meaning that the client does not have any knowledge of the access token itself. The client will be given some metadata corresponding to the access token, such as its expiration time, so that it does not send an expired access token to MCX resource servers. If the access token is presented to an MCX resource server and the scope is invalid or the token is expired or revoked, the MCX resource server should return an error message indicating such to the MCX client.