Unauthorized request with Authorization header - only works with access_token in body #2386

michibertel · 2021-01-17T22:14:15Z

When sending any request to the API, I get the response:

{
    "error": {
        "code": 3,
        "message": "Unauthorized request"
    }
}

Although I set the Authorization Header like suggested: "Bearer TOKEN" (TOKEN can be the static token for the user or the response of a successful /auth/authenticate POST)

The strange thing is, it works when I send the token as "access_token" in the body of the request.

Like

{
    "access_token": TOKEN
}

This wouldn't be a big problem if the npm-package @directus/sdk-js would support this option.

Is there any workaround or fix for this issue?

Versions:

directus: 8.6.2
@directus/sdk-js: 6.2.0
MariaDB: 10.3

The text was updated successfully, but these errors were encountered:

michibertel changed the title ~~Unauthorized request with Authorization Header - only works with access_token in body~~ Unauthorized request with Authorization header - only works with access_token in body Jan 17, 2021

rijkvanzanten transferred this issue from directus/directus Jan 17, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Unauthorized request with Authorization header - only works with access_token in body #2386

Unauthorized request with Authorization header - only works with access_token in body #2386

michibertel commented Jan 17, 2021

Unauthorized request with Authorization header - only works with access_token in body #2386

Unauthorized request with Authorization header - only works with access_token in body #2386

Comments

michibertel commented Jan 17, 2021