Deprecated Authorization header

sil · March 2, 2022, 9:52am

hello,

in my Logfile of the application server i see a lot of the following messages:

time=“2022-03-02T09:03:34Z” level=warning msg="Deprecated Authorization header : RFC1945 format expected : Authorization: "

What is exactly the meaning? and where does it come from? sorry, i just don’t get it.

brocaar · March 16, 2022, 8:48am

I believe this is because in the past you could use the API token directly within the Authorization HTTP header. This should have been Authorization and the Bearer <token> as content (thus prefixed with Bearer ).

sil · March 21, 2022, 5:23pm

Just to have some example for other people with the same problem:

No Error:

curl -X GET --header 'Accept: application/json' --header 'Grpc-Metadata-Authorization: Bearer eyJ---SNIP---SNIP--Gz8' 'http://server:8080/api/applications?limit=2'

Error:

curl -X GET --header 'Accept: application/json' --header 'Authorization: eyJ---SNIP---SNIP--Gz8' 'http://server:8080/api/applications?limit=2'

regards,
S