AnsweredAssumed Answered

Activiti REST authentication

Question asked by mhanrahan on Feb 3, 2014
Latest reply on Aug 12, 2015 by yogesh1454
I've been working on integrating my application with the REST interface of Activiti 5.14, and I've noticed that not everything needs to be authenticated using basic http auth.

For example, querying for a historical process instance with the request:
http://server:8080/activiti-rest/service/history/historic-process-instances/55985
requires the authentication headers to be set to avoid a fault.

However, if I try and query for a task with the request:
http://server:8080/activiti-rest/service/query/tasks
{
"name" : "foo"
}

Is this a design decision to require authentication for only some of the requests, and if so, is there a list or a way to tell which requests do or don't require authentication?  Or is it just a bug?

Outcomes