Using the authentication I'm getting a 502 on the /wp-json/wp/v2/users/ endpoint. The endpoint works perfectly when not using authentication.

So, 2 questions.

1. Any insight on this 502?
2. Is it possible to require authentication for ALL endpoints? Even GET, I want all information private.

If anyone else encounters this, the server was simply crashing. I lowered the returned users via per_page and it began to work at a specific threshold.