Pass received Set-Cookie header to each request to private API as 'Cookie' header.
Name | Description |
---|---|
auth[login] | Login |
auth[password] | Password |
auth[cookie_auth] | Cookie Auth |
Version: HTTP/1.0 Accept: application/json Content-Type: application/json Host: example.org Cookie:
POST /api/rest/customer/v1/auth
{"auth":{"login":"login","password":"password","cookie_auth":true}}
X-Frame-Options: SAMEORIGIN X-XSS-Protection: 0 X-Content-Type-Options: nosniff X-Download-Options: noopen X-Permitted-Cross-Domain-Policies: none Referrer-Policy: strict-origin-when-cross-origin Content-Type: application/json Cache-Control: no-cache Set-Cookie: _yeti_customer_v1_session=eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOjEwLCJhdWQiOlsiY3VzdG9tZXItdjEiXSwiZXhwIjoxNzEwMjU0NzQwfQ.pIDSAM0PZpaVT7OBTcej4VaktY72dUfWDDYE75zJPl0; path=/; expires=Tue, 12 Mar 2024 14:45:40 GMT; HttpOnly; SameSite=Lax X-Request-Id: 3e82b777-8c2b-443a-aa4f-fef39c43520f X-Runtime: 0.005967 Content-Length: 0
201 Created