Skip to content

Don't send long lived API token in the URL for external tools #4414

New issue
New issue
Closed
Closed
Don't send long lived API token in the URL for external tools#4414
Labels
Feature: APIFeature: External ToolType: Suggestionan ideaUser Role: API UserMakes use of APIsVote to Close: pdurbin
@scolapasta

Description

@scolapasta
scolapasta
opened on Jan 11, 2018

Currently when we go to a tool like TwoRavens, we send the API token in the URL. We needs these such tools to accept the token in the header, and for the dataverse side to send them in the header.

(From Backlog Grooming 1/31) When will make this change, we should support both for a while and then make the change to require it in the header instead of the URL. We should include these messages in the documentation.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Feature: APIFeature: External ToolType: Suggestionan ideaUser Role: API UserMakes use of APIsVote to Close: pdurbin

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions