Reputation: 1574
REST unauthorized error meaning
I am asking maybe an open question about REST authentication practice. We use OpenID to authenticate with REST API. However there are some API where we do POST with body that also contain a secret (to support certain business rules). Now, if that secret is wrong am I still fine to return a 401 error? Does REST prescribe (like HTTP does) where token, password, secret should go in a REST call (e.g. always in HTTP Authorization header...)?
thanks
Upvotes: 0
Views: 723
Answers (1)
Reputation: 13669
The 401 Unauthorized error is an HTTP status code that means the page you were trying to access cannot be loaded until you first log in with a valid user ID and password. If you have just logged in and received the 401 Unauthorized error, it means that the credentials you entered were invalid for some reason.
Upvotes: 1
Related Questions
- REST API Authentication
- Authorization in RESTful HTTP API, 401 WWW-Authenticate
- Problem with Magento 2 REST authentication
- Rest Assured basic auth issue
- REST authentication / authorization
- RESTful API Authentication
- Rest Webservice Basic Authorization
- HTTP 401 Unauthorized when not using HTTP basic auth?
- REST API: HTTP Status code for auth violation
- REST server response to authorization