There is no authentication for Target Delivery APIs.
This API does not process cookies or redirect calls.
Both HTTP/1.1 and HTTP/2 header names are case-insensitive; however, HTTP/2 enforces lowercase header names. For more information, see the Hypertext Transfer Protocol Version 2 (HTTP/2) documentation.
If you use an endpoint that routes visitors through our new Load Balancer infrastructure, their connections are automatically upgraded to HTTP/2. This upgrade process converts request headers to lowercase headers so they won’t be considered malformed.
This issue can potentially be an issue for customers if their libraries are set up to look for case-sensitive (specifically not lower-case) request/response headers.