Function withAuthorization

withAuthorization(opts: AuthorizationOptions): MiddlewareExecutor
Middleware that injects authorization headers and retries on 401 responses.
Parameters
- opts: AuthorizationOptions
  Configuration parameters. See AuthorizationOptions for details.
Returns MiddlewareExecutor
Remarks
Injects Authorization headers using a TokenProvider interface. When a 401 Unauthorized response is received, the middleware calls the token provider again (allowing token refresh) and retries according to the configured backoff strategy. Existing Authorization headers are respected and not overridden.

Only 401 status triggers retry; other error statuses pass through unchanged.

Throws
If the token provider returns an invalid token (missing properties).

Throws
If the token provider throws an error during getToken().

Throws
If the request's AbortSignal is aborted during retry delay.

Throws
If the strategy delay exceeds maximum safe timeout (~24.8 days).
Example
```
import { withAuthorization } from "@qfetch/middleware-authorization";
import { constant, upto } from "@proventuslabs/retry-strategies";

const qfetch = withAuthorization({
  tokenProvider: {
    getToken: async () => ({
      accessToken: "my-token",
      tokenType: "Bearer"
    })
  },
  strategy: () => upto(1, constant(0))
})(fetch);
```
See
- RFC 9110 - 401 Unauthorized
- RFC 6750 - Bearer Token Usage
- Defined in packages/middleware-authorization/src/with-authorization.ts:171