This test determines whether the server disallows passing the access token via a query parameter.
View source code on GitHub
Back to the test case overview or the threat overview