public async Task InvalidTokenCausesInvalidAuthentication() {
// Arrange
var server = CreateResourceServer(options => {
options.ClientId = "Fabrikam";
options.ClientSecret = "B4657E03-D619";
});
var client = server.CreateClient();
var request = new HttpRequestMessage(HttpMethod.Get, "/");
request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", "invalid-token");
// Act
var response = await client.SendAsync(request);
// Assert
Assert.Equal(HttpStatusCode.Unauthorized, response.StatusCode);
}