AUTHORIZATION_PROMPT
The Authorization Server SHOULD prompt the End-User for re-authentication. If it cannot re-authenticate the End-User, it MUST return an error, typically login_required.
See also
"OpenID Connect Core 1.0, Section 3.1.2.6 https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.3.1.2.6"