• API Testing Challenges 30 - How To - authentication passed 201

  This post and video shows how to complete the basic auth authentication using username and password challenge number 30, which returns a status code of 201. What are the API Challenges? Our API Challenges Application has a fully functional cloud hosted API, and a set of challenges to work through. Authentication Challenge Most of the challenges simply require the correct payload, and an X-Challenger header to track the session. The authentication challenges require an extra header, the value for which can only be obtained with a username and password. Challenge 30 Authentication Passed Issue a POST request on the /secret/token end point and receive 201 when Basic auth username/password is admin/password POST request means use the HTTP Verb POST e.g. POST /secret/token sends to the secret token endpoint Basic auth means include the Basic Authorization header username/password is admin/password the authorisation header value is base 64 encoded, and the details should match admin as the username, and password for the password add the X-CHALLENGER header to track progress and because the authentication code we need is asociated with the X-challenger session Receive a 201 response because the session token has been created to allow authorization to access the secret notes Basic Instructions Create a new request for the /secret/token end point if running locally that endpoint would be http://localhost:4567/secret/token if running in the cloud that endpoint would be https://apichallenges.herokuapp.com/secret/token The verb should be a POST Add a Basic Auth header by selecting “Basic” from the “Auth” tab and entering a[…]

  24.07.2021 | 3:30 קרא עוד...

• API Testing Challenges 29 - How To - authentication failed 401

  This post and video shows how to complete the authentication failed with username and password challenge number 29, which returns a status code of 401. What are the API Challenges? Our API Challenges Application has a fully functional cloud hosted API, and a set of challenges to work through. Authentication Challenge Most of the challenges simply require the correct payload, and an X-Challenger header to track the session. The authentication challenges require an extra header, the value for which can only be obtained with a username and password. Challenge 29 Authentication Failed Issue a POST request on the /secret/token end point and receive 401 when Basic auth username/password is not admin/password POST request means use the HTTP Verb POST e.g. POST /secret/token sends to the secret token endpoint Basic auth means include the Basic Authorization header username/password is not admin/password the authorisation header value is base 64 encoded, and the details should not match admin as the username, and password for the password add the X-CHALLENGER header to track progress and because the authentication code we need is asociated with the X-challenger session Receive a 401 response Basic Instructions Create a new request for the /secret/token end point if running locally that endpoint would be http://localhost:4567/secret/token if running in the cloud that endpoint would be https://apichallenges.herokuapp.com/secret/token The verb should be a POST Add a Basic Auth header by selecting “Basic” from the “Auth” tab and entering a username and password but make sure it is not admin/password e.g. use username[…]

  24.07.2021 | 3:15 קרא עוד...

לרשימה המלאה >>