https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=24861 --- Comment #3 from David Cook <dcook@prosentient.com.au> --- (In reply to Jonathan Druart from comment #1)
What are you expecting here? To modify the password without auth?
I wouldn't expect to modify the password without authentication, as that seems crazy, but I was trying every permutation. What's the difference between a "public" and "non-public" Koha API endpoint? I haven't been able to observe any difference.
With RESTBasicAuth enabled and using the username and password for patron #42:
curl -u <username:password> http://localhost:8080/api/v1/public/patrons/42/password -d '{"old_password":"OLD","password":"NEW","password_repeated":"NEW"}'
{"error":"Authorization failure. Missing required permission(s).","required_permissions":null}
Perhaps I'm doing something wrong but this looks like a bug to me?
It works for me on master.
With that same syntax? The documentation isn't clear. I'll have to try again. I've noticed RESTBasicAuth doesn't work with CGI, so maybe I was trying it on a non-Plack Koha, and that's why it was failing. -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.