AnsweredAssumed Answered

Activiti REST authentication

Question asked by mhanrahan on Feb 3, 2014
Latest reply on Apr 12, 2019 by abbask01
I've been working on integrating my application with the REST interface of Activiti 5.14, and I've noticed that not everything needs to be authenticated using basic http auth.

For example, querying for a historical process instance with the request:
http://server:8080/activiti-rest/service/history/historic-process-instances/55985
requires the authentication headers to be set to avoid a fault.

However, if I try and query for a task with the request:
http://server:8080/activiti-rest/service/query/tasks
{
"name" : "foo"
}

Is this a design decision to require authentication for only some of the requests, and if so, is there a list or a way to tell which requests do or don't require authentication?  Or is it just a bug?

Outcomes