Closed gjost closed 3 months ago
Django REST Framework's default settings send HTTP Basic auth username/passwords to the Django authentication system, which breaks the API when it is behind a password, like in dev/stage.
Solution is to disable rest_framework.authentication.BasicAuthentication
. See https://stackoverflow.com/questions/15975106/django-rest-framework-gives-403-when-behind-nginx-but-not-directly
Fixed in commit cc7d429
on branch 220-api-nrid-objects
and also in commit a5a5f86
to be merged in branch develop
.
All pages in the
ddrpublic
API return403 Forbidden
when viewed behind the HTTP Basic auth on the stage and dev sites. This makes testing and development harder.