- added possibility to define the parameter, in which the credentials are scoped
- added authentication via headers
- added authentication via query and/or post body
- added scoping of authentication
- added authentication via credentials in the URL or in the post body