Project

General

Profile

Actions

Defect #32315

closed

Impossible to validate API key without modifying anything

Added by Nathan Cutler about 5 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
REST API
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Resolution:
Fixed
Affected version:

Description

AFAICT the Redmine API has no way of validating whether a given API key is valid, short of actually attempting a write operation (POST, PUT, DELETE).

With the GitHub API, you can do:

curl --silent https://api.github.com/repos/myuser/myrepo/pulls/19999?access_token=invalid
{
  "message": "Bad credentials",
  "documentation_url": "https://developer.github.com/v3" 
}

Would be great to have something like this in the Redmine API as well! Thanks for the cool software.


Related issues

Related to Redmine - Feature #30086: Use HTTP status code 403 instead of 401 when REST API is disabledClosedGo MAEDA

Actions
Actions

Also available in: Atom PDF