From acb57d6d42b75ba3d818d746e711be8a55a8c4f2 Mon Sep 17 00:00:00 2001
From: maartenvandenbrande <maarten.vdbrande@gmail.com>
Date: Thu, 22 Jan 2026 10:12:11 +0100
Subject: [PATCH] fix: authorization header scheme

---
 .../src/classes/utils/OdrlAccessRequestService.ts    |  6 +++---
 controller/src/classes/utils/OdrlPolicyService.ts    | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/controller/src/classes/utils/OdrlAccessRequestService.ts b/controller/src/classes/utils/OdrlAccessRequestService.ts
index 13f20f7..ce9fb3d 100644
--- a/controller/src/classes/utils/OdrlAccessRequestService.ts
+++ b/controller/src/classes/utils/OdrlAccessRequestService.ts
@@ -23,7 +23,7 @@ export class ODRLAccessRequestService {
             `${this.authorizationServerURL}/requests`, {
                 method: 'POST',
                 headers: {
-                    'authorization': requestingParty,
+                    'authorization': `WebID ${encodeURIComponent(requestingParty)}`,
                     'content-type': 'text/turtle'
                 }, body: await this.accessRequestToTtl({
                     uid: uuid(),
@@ -68,7 +68,7 @@ export class ODRLAccessRequestService {
             `${this.authorizationServerURL}/requests/${encodeURIComponent(accessRequestID)}`, {
                 method: 'PATCH',
                 headers: {
-                    'authorization': resourceOwner,
+                    'authorization': `WebID ${encodeURIComponent(resourceOwner)}`,
                     'content-type': 'application/json'
                 }, body: JSON.stringify({ status: status })
             }
@@ -87,7 +87,7 @@ export class ODRLAccessRequestService {
                 `${this.authorizationServerURL}${endpoint}`, {
                     method: 'GET',
                     headers: {
-                        'authorization': resourceOwnerOrRequestingPartyID
+                        'authorization': `WebID ${encodeURIComponent(resourceOwnerOrRequestingPartyID)}`
                     }
                 }
             ))
diff --git a/controller/src/classes/utils/OdrlPolicyService.ts b/controller/src/classes/utils/OdrlPolicyService.ts
index c86b1d4..996ba07 100644
--- a/controller/src/classes/utils/OdrlPolicyService.ts
+++ b/controller/src/classes/utils/OdrlPolicyService.ts
@@ -29,7 +29,7 @@ export class ODRLPolicyService {
         // Get all our policies
         const response = await fetch(UMA_URL(this.authorizationServerURL), {
             headers: {
-                "Authorization": webId,
+                "Authorization": `WebID ${encodeURIComponent(webId)}`,
                 "Accept": "text/turtle"
             }
         });
@@ -46,7 +46,7 @@ export class ODRLPolicyService {
         // Get all our policies
         const response = await fetch(UMA_URL(this.authorizationServerURL,`/${encodeURIComponent(policyId)}`), {
             headers: {
-                "Authorization": webId,
+                "Authorization": `WebID ${encodeURIComponent(webId)}`,
                 "Accept": "text/turtle"
             }
         });
@@ -62,7 +62,7 @@ export class ODRLPolicyService {
         await fetch(UMA_URL(this.authorizationServerURL), {
             method: 'POST',
             headers: {
-                'Authorization': webId,
+                'Authorization': `WebID ${encodeURIComponent(webId)}`,
                 'Content-type': 'text/turtle'
                 // 'Content-type': 'application/sparql-update'
             },
@@ -74,7 +74,7 @@ export class ODRLPolicyService {
         await fetch(UMA_URL(this.authorizationServerURL,`/${encodeURIComponent(policyId)}`), {
             method: 'PATCH',
             headers: {
-                'Authorization': webId,
+                'Authorization': `WebID ${encodeURIComponent(webId)}`,
                 'Content-type': 'application/sparql-update'
             },
             body: body
@@ -158,7 +158,7 @@ WHERE {}`)
         // 1: Fetch the policy contents
         const response = await fetch(UMA_URL(this.authorizationServerURL), {
             headers: {
-                Authorization: webId,
+                Authorization: `WebID ${encodeURIComponent(webId)}`,
                 Accept: "text/turtle"
             }
         });
@@ -219,7 +219,7 @@ WHERE {}`)
                     UMA_URL(this.authorizationServerURL, `/${encodeURIComponent(policyId)}`), {
                         method: "PATCH",
                         headers: {
-                            "Authorization": webId,
+                            "Authorization": `WebID ${encodeURIComponent(webId)}`,
                             "Content-type": "application/sparql-update",
                         },
                         body: `