Camunda 8 operate 401 Unauthorized

cammunda-user · September 24, 2023, 9:04am

Hello everyone. The problem that when responding with 401 status it does not send WWW-Authenticate in responce, thus not triggering my client application authorization chain.
According to the spec:

A server using HTTP authentication will
respond with a 401 Unauthorized response
to a request for a protected resource.
This response must include at least one
WWW-Authenticate header and at least one challenge

nathan.loding · September 28, 2023, 3:14pm

Hi @cammunda-user - I will pass this feedback along to the team. Can you share whether you are using the SaaS product or self-managed? And if self-managed, which version?

cammunda-user · September 29, 2023, 9:27am

Hello, thank you for your reply. I use self-managed one. The version is 8.2.13, but I think it affects all of them.