read / write
The validating authorization object.
This object will check credentials parsed from the Authorization header and produce an Authorization instance representing the authorization the credentials have. It may also reject a request. This is typically an instance of AuthServer.