Be explicit that now Www-Authenticate header should be present

Co-authored-by: Stefan Majewsky <stefan.majewsky@sap.com>

Author: SuperSandro2000

internal/api/registry/replication_test.go

@@ -578,7 +578,11 @@ func TestReplicationFailingFromGHCRio(t *testing.T) {
 			Path:         "/v2/test1/foo/manifests/latest",
 			Header:       map[string]string{"Authorization": "Bearer " + s1.GetToken(t, "repository:test1/foo:pull")},
 			ExpectStatus: http.StatusUnauthorized,
-			ExpectHeader: test.VersionHeader,
+			ExpectHeader: map[string]string{
+				test.VersionHeaderKey: test.VersionHeaderValue,
+				// even though we return 401, no Www-Authenticate header shall be rendered because would be futile for the user performing this request to authenticate
+				"Www-Authenticate": "",
+			},
 			ExpectBody:   test.ErrorCode(keppel.ErrDenied),
 		}.Check(t, s1.Handler)
 	})