Deprecated Authorization header


in my Logfile of the application server i see a lot of the following messages:

time=“2022-03-02T09:03:34Z” level=warning msg="Deprecated Authorization header : RFC1945 format expected : Authorization: "

What is exactly the meaning? and where does it come from? sorry, i just don’t get it.

I believe this is because in the past you could use the API token directly within the Authorization HTTP header. This should have been Authorization and the Bearer <token> as content (thus prefixed with Bearer ).

Just to have some example for other people with the same problem:

No Error:

curl -X GET --header 'Accept: application/json' --header 'Grpc-Metadata-Authorization: Bearer eyJ---SNIP---SNIP--Gz8' 'http://server:8080/api/applications?limit=2'


curl -X GET --header 'Accept: application/json' --header 'Authorization: eyJ---SNIP---SNIP--Gz8' 'http://server:8080/api/applications?limit=2'