Hofmaimaier@feddit.org to Programmer Humor@programming.dev · 1 month agoThe mist of the wwwfeddit.orgimagemessage-square90linkfedilinkarrow-up1432arrow-down149
arrow-up1383arrow-down1imageThe mist of the wwwfeddit.orgHofmaimaier@feddit.org to Programmer Humor@programming.dev · 1 month agomessage-square90linkfedilink
minus-squarewheezy@lemmy.mllinkfedilinkEnglisharrow-up10·1 month agoWouldn’t unauthorized only be meant for AFTER a login is successful? Like, the user should have to have an active session first. Maybe you’re just talking about that case though.
minus-squaresmeg@feddit.uklinkfedilinkEnglisharrow-up3·1 month agoMaybe I meant unauthenticated. What is this, mandatory cybersecurity education!?
minus-squarebountygiver [any]@lemmy.mllinkfedilinkEnglisharrow-up1·1 month agounauthorized (403) is still valid for unlogged in as you can permit anonymous access to certain resources. unauthenticated (401) is for when you should be redirecting the user to the login page
minus-squarewheezy@lemmy.mllinkfedilinkEnglisharrow-up1·edit-21 month agoThanks. I think I might have been misreading these in my head. Dyslexia is a dickhead. The number codes really helped.
Wouldn’t unauthorized only be meant for AFTER a login is successful?
Like, the user should have to have an active session first. Maybe you’re just talking about that case though.
Maybe I meant unauthenticated. What is this, mandatory cybersecurity education!?
unauthorized (403) is still valid for unlogged in as you can permit anonymous access to certain resources.
unauthenticated (401) is for when you should be redirecting the user to the login page
Thanks. I think I might have been misreading these in my head. Dyslexia is a dickhead. The number codes really helped.