Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Activiti-rest returns 403 forbidden

groopk
Champ in-the-making
Champ in-the-making

‎04-04-2013 02:29 PM

When we make an unauthenticated request to activiti-rest, we get a '403 forbidden' response.  I believe the correct response should be a 401 unauthorized.  This would enable normal rest clients (and web browsers) to properly interact with the basic authentication mechanism of activiti-rest.
Labels:
0 Kudos
1 REPLY 1

frederikherema1
Star Contributor
Star Contributor

‎04-05-2013 06:55 AM

That's a coincidence, I stumbled upon that myself this morning when working on the docs for a new and improved REST-API that's coming up. This is indeed not right, as the 403 tells the client to NOT try again because authentication won't help either…

To not break backwards-compatibility with existing clients, the current REST-API will keep returning 403's. The new one, will return 401's as I docked this morning:

Response Description
200 - Ok The operation was successful and a response has been returned (GET and PUT requests).
201 - Created The operation was successful and the entity has been created and is returned in the response-body (POST request).
204 - No content The operation was successful and entity has been deleted and therefor there is no response-body returned (DELETE request).
401 - Unauthorized The operation failed. The operation requires an Authentication header to be set. If this was present in the request, the supplied credentials are not valid or the user is not authorized to perform this operation.
404 - Not found The operation failed.The requested resource was not found.
405 - Method not allowed The operation failed. The used method is not allowed for this resource. Eg. trying to update (PUT) a deployment-resource will result in a 405 status.
409 - Conflict The operation failed. The operation causes an update of a resource that has been updated by another operation, which makes the update no longer valid.
500 - Internal server error The operation failed. An unexpected exception occured while executing the operation. The response-body contains details about the error.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC