https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35197 --- Comment #20 from Pedro Amorim <pedro.amorim@ptfs-europe.com> --- Thanks for the review, Victor. I believe my follow-ups address the issues you mentioned. Additional comments: I believe sub under at REST/V1/Auth.pm handles the use cases you mentioned, this is why removing e.g. HTTP code 400 from the additional_fields route spec specifically does not prevent a 400 response from that specific route, as that is "called before every request to API" as in the sub description. I believe we add this "dead API code" for every new endpoint for openAPI documentation purposes i.e. https://api.koha-community.org/ The above is only my interpretation of it, Martin and/or Tomas will be better suited to confirm or deny it. -- You are receiving this mail because: You are watching all bug changes.