PingAuthorize

Testing the statement

You can test that the statement works correctly with cURL or Postman.

Steps

  • Issue a GET request to https://localhost:7443/meme-game/api/v1/users/user.0/answers/2 as user.660. The following cURL command makes such a request.

    curl --insecure -X GET \
      https://localhost:7443/meme-game/api/v1/users/user.0/answers/2 \
      -H 'Authorization: Bearer {"active": true, "sub": "user.660"}'

    Result:

    Expect a 451 Unavailable For Legal Reasons response with the following body.

    {
    	"errorMessage": "Restricted: Not permitted per regulation",
    	"status": 451
    }