With API 6.0 authentication and authorization is done trough doneĀ through OAuth 2.
To get access to the protected resources OAuth 2.0 uses Access Tokens. An Access Token is a string representing the granted permissions.
...
Code Block | ||
---|---|---|
| ||
{ "statusCode": 401, "statusText": "Unauthorized", "message": "Token expired.", "date": "2019-11-13T06:26:01", "statusFamily": "CLIENT_ERROR", "method": "GET", "uri": "http://platform-dev.dataloy.com/ws/rest/Cargo?filter=subCargos.freight%28GTE%292500000" |
The client should not ask for a new token for each call but use the same token as long as it is valid.