API Testing Challenges 29 - How To - authentication failed 401

How to complete the authentication failed with username and password challenge number 29, which returns a status code of 401.

Issue a POST request on the `/secret/token` end point and receive 401 when Basic auth username/password is not admin/password

- `POST` request means use the HTTP Verb POST
- e.g. `POST /secret/token` sends to the heartbeat endpoint
- `Basic auth` means include the [Basic Authorization header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication)
- `username/password is not admin/password` the authorisation header value is base 64 encoded, and the details should not match `admin` as the username, and `password` for the password
- add the `X-CHALLENGER` header to track progress and because the authentication code we need is asociated with the `X-challenger` session
- Receive a 401 response

Find the application links and more information at:

- https://eviltester.com/apichallenges

Write up of this challenge instructions:

- https://eviltester.com//apichallenges/howto/29-authentication-post-secret-token

---

Remember to subscribe to this YouTube channel.

You can support me on Patreon https://patreon.com/eviltester (watch my videos ad free and receive extra content)

I blog at https://eviltester.com/blog

Learn more about my books and online training at:

- https://eviltester.com

Follow me on:

- https://twitter.com/eviltester
- https://instagram.com/eviltester
- https://facebook.com/eviltester

Видео API Testing Challenges 29 - How To - authentication failed 401 канала EvilTester - Software Testing