**As** a scim client
**I want to** see AuthenticationSchemes without providing any Authorization header

**Acceptance criteria**

* Begin of the insertion**{openproject\_host}/scim\_v2/ServiceProviderConfig**End of the insertion Begin of the deletion **/ServiceProviderConfig**End of the deletion responds with 200 and the following limited output when there is no authorization provided.


```json
{
"schemas":[
"urn:ietf:params:scim:schemas:core:2.0:ServiceProviderConfig"
],
"meta":{
"resourceType":"ServiceProviderConfig",
"created":"2025-08-06T07:46:13.485+00:00",
"lastModified":"2025-08-06T07:46:13.485+00:00",
"version":"1",
"location":"https://8e25c962e087.ngrok-free.app/scim_v2/ServiceProviderConfig"
},
"authenticationSchemes":[
{
"type":"oauth2",
"name":"OAuth2",
"description":"https://www.openproject.org/docs/system-admin-guide/authentication/scim/#a-static-access-token"
},
{
"type":"oauthbearertoken",
"name":"OAuth Bearer Token",
"description":"https://www.openproject.org/docs/system-admin-guide/authentication/scim/#b-oauth-20-client-credentials"
},
{
"type":"oidcjwt",
"name":"OpenID Provider JWT",
"description":"https://www.openproject.org/docs/system-admin-guide/authentication/scim/#c-jwt-from-identity-provider"
}
]
}
```

* Begin of the insertion**{openproject\_host}/scim\_v2/ServiceProviderConfig**End of the insertion Begin of the deletion **/ServiceProviderConfig**End of the deletion responds wtih 401 Unauthorized when Authorization header is wrong. Begin of the insertion

* **{openproject\_host}/scim\_v2/ServiceProviderConfig** responds with extended information if Authorization header is correct.End of the insertion


<br>