Bearer token standard #9073

alanzheng88 · 2023-07-24T05:44:26Z

alanzheng88
Jul 24, 2023

django-rest-framework/docs/api-guide/testing.md

Line 161 in 7658ffd

client.credentials(HTTP_AUTHORIZATION='Token ' + token.key)

I noticed that we're using Token <api_token> format here but wouldn't the standard for this be Bearer <api_token> or is this working as designed?

in postman we would generally pass a header like --header 'Authorization: Bearer 1234abcd'

Answered by kevin-brown

Jul 24, 2023

I believe Bearer is intended for use as a part of the OAuth Bearer token standard, of which the built-in DRF Token is not. We are allowed to make use of the authorization scheme of our choice and as such we picked Token.

View full answer

kevin-brown · 2023-07-24T20:21:27Z

kevin-brown
Jul 24, 2023

I believe Bearer is intended for use as a part of the OAuth Bearer token standard, of which the built-in DRF Token is not. We are allowed to make use of the authorization scheme of our choice and as such we picked Token.

0 replies

Naman-12911 · 2023-08-04T04:00:13Z

Naman-12911
Aug 4, 2023

Hello,
Can I fix this issue?.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Bearer token standard #9073

Uh oh!

{{title}}

Uh oh!

Replies: 2 comments

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Uh oh!

Bearer token standard #9073

Uh oh!

alanzheng88 Jul 24, 2023

Replies: 2 comments

Uh oh!

kevin-brown Jul 24, 2023

Uh oh!

Naman-12911 Aug 4, 2023

alanzheng88
Jul 24, 2023

kevin-brown
Jul 24, 2023

Naman-12911
Aug 4, 2023