Migrated from Redmine #1067 | Author: Thomas Luzat
Status: Feedback | Priority: High, I’m very impatient | Created: 2023-06-27
We were using a server-side application to access the API and authenticate through getToken. This was working, but we got API limit errors yesterday ({code -32600, message: “Too many requests”}).
Optimizing the code somewhat and caching more results, the API stopped working completely this day instead. The getToken code does lead to a useless redirect.
A simplified request using curl from the shell also does not work anymore:
curl -v 'https://user-api.simplybook.me/login' -H 'Content-Type: application/json' -H 'Accept: application/json' --data '{"jsonrpc":"2.0","method":"getToken","params":["COMPANY_LOGIN","PUBLIC_API_KEY"],"id":1}'
… with COMPANY_LOGIN and PUBLIC_API_KEY replaced (also tried generating a new API key) results in a 301 redirect instead of returning a token:
< HTTP/1.1 301 Moved Permanently < Server: nginx < Date: Tue, 27 Jun 2023 01:06:15 GMT < Content-Type: text/html; charset=UTF-8 < Content-Length: 178 < Keep-Alive: timeout=20 < Location: https://user-api.simplybook.me/login < X-XSS-Protection: 1; mode=block < X-IPLB-Request-ID: 4E2E45EA:8F32_8E2C8CB0:01BB_649A3606_1065C471:19CA9 < Strict-Transport-Security: max-age=15768000 < X-IPLB-Instance: 45488 < 301 Moved Permanently301 Moved Permanently
nginx * Connection #0 to host user-api.simplybook.me left intact
I don’t get a result from the API explorer either, but that might be a CORS issue. I’ve tried getting a token from multiple IPs without success.
What has happened?