In our current landscape we have multiple authentication means, like bearer token but also a cookie.
Would it be possible to try different authentication mechanisms?
Try in what sense? You can add multiple alternative security schemes (see here), but you’ll still need to verify in your security logic that at leas one is provided.