Every REST endpoint, as it is implemented now, is secured by default. I had
not thought of a scenario where internal OFBiz services will need to be
invoked without authentication (externally)
Yes, the services themselves can be specified to NOT require auth but I had
always thought that was
Hi Hans
I had earlier made a commit 72458a1ef2fd1e5b7c1694e76fece049aecfb0a4 that
should have resulted in 400. If not done already, could you please update
your local repository?
You should get following in response -
{
"statusCode": 400,
"statusDescription": "Bad Request",
Sorry Girish me again,
if i create a simple method service with action GET and no parameters ,
i get a 500 http error,
like:
curl -X GET https://localhost:8443/rest/services/findProductById -H
"Accept: application/json" -H "Authorization: Bearer $token" --insecure
{
"statusCode" : 500,
Hi, Girish,
thanks again for your last reply it defenity helped, however i have
another question.
I need to access certain services publicly without a token.
I have put auth="false" on the service definition and
login-required="false" on the simple-method implementation
still i get a 401