API should accept RFC7235 authorization header

Question

API should accept RFC7235 authorization header

viceice opened this issue 3 years ago · comments

Currently HEX API requires authorization: <token> as api header, it should support normal Bearer token as other API's will do.

eg

curl --include \
     --header "Accept: application/json" \
     --header "Authorization: Bearer <token>" \
  'https://private-anon-d3fb121a9d-hexpm.apiary-mock.com/packages?sort=&search='

Eric Meadows-Jönsson · Answer 1 · Tue Aug 10 2021 05:01:36 GMT+0800 (China Standard Time)

Agreed. We need to implement it in a backwards compatible way on https://github.com/hexpm/hexpm first then the specifications can be updated.

Eric Meadows-Jönsson · Answer 2 · Sun Oct 24 2021 22:58:05 GMT+0800 (China Standard Time)

Closing this since it requires functionality change before the specs can be updated.