crux23
commented
8 years ago couldn't get it to work. apache seems to strip the authorization header. tried htaccess fixes but it didn't help. also tried to contact the hoster but they didn't reply. so we exchange the token as json data instead.
Can we support a
header like described here: https://jwt.io/introduction/#how-do-json-web-tokens-work-
This way we have a unified way to send the token (Now it's query params for GET and JSON field in the body for POST).
Looks like it should already be supported, but it doesn't seem to work for me.