Now, we will compose and send an HTTP request to retrieve the first page of the messages without authentication credentials:
http POST ':5000/api/messages/?page=1'
The following is the equivalent curl
command:
curl -iX GET ':5000/api/messages/?page=1'
We will receive a 401 Unauthorized
status code in the response header. The following lines show a sample response:
HTTP/1.0 401 UNAUTHORIZED Content-Length: 19 Content-Type: text/html; charset=utf-8 Date: Mon, 15 Aug 2016 01:16:36 GMT Server: Werkzeug/0.11.10 Python/3.5.1 WWW-Authenticate: Basic realm="Authentication Required"
If we want to retrieve messages, that is, to make a GET
request to /api/messages/
, we need to provide authentication credentials using HTTP authentication. However, before we can do this, it is necessary to create a new user. We will use the new user to test our new resource classes related to users and our changes in the permissions policies.
http POST :5000/api/users...