With API 6.0 authentication and authorization is done trough doneĀ through OAuth 2.
To get access to the protected resources OAuth 2.0 uses Access Tokens. An Access Token is a string representing the granted permissions.
...
| Code Block | ||
|---|---|---|
| ||
{
"statusCode": 401,
"statusText": "Unauthorized",
"message": "Token expired.",
"date": "2019-11-13T06:26:01",
"statusFamily": "CLIENT_ERROR",
"method": "GET",
"uri": "http://platform-dev.dataloy.com/ws/rest/Cargo?filter=subCargos.freight%28GTE%292500000" |
The client should not ask for a new token for each call but use the same token as long as it is valid.