This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
When a client endpoint makes a call on behalf of an identity, it MUST use the P-Agent-On-Behalf-Of header.
The server endpoint SHOULD validate that the user has the permission to make on-behalf-of requests.