Get empty all sessions

In order to get all sessions per core instance that were set up for service consumers in parallel via an identical Api-Key, the request MUST be sent with the Api-Key in the HTTP request headers. Here the API remote service is attacked by trying to get all sessions with a random Api-Key.

The errors status: 403 is returned from the remote service together with the errors detail: Unknown Api-Key. in the JSON response body.

Request endpoint

GET SERVER:PORT/api/sessions

Response status

200

Request headers

Accept:application/vnd.api+json
Content-Type:application/vnd.api+json
Api-Key:KKKKKKKK-KKKK-KKKK-KKKK-KKKKKKKKKKKK

Response headers

Transfer-Encoding:chunked
Connection:keep-alive
Accept:application/vnd.api+json
Cache-Control:no-cache
Date:Tue, 19 Mar 2024 12:51:49 GMT
Content-Type:application/vnd.api+json
Server:nginx/1.25.4

Request body

# intentionally blank

Response body

{
    "errors": [
        {
            "status": 403,
            "detail": "Unknown Api-Key.",
            "source": {
                "parameter": "id",
                "pointer": ""
            },
            "title": "Session not established"
        }
    ],
    "links": {
        "self": "/api/sessions"
    }
}

HTTPie example

$ http get SERVER:PORT/api/sessions Accept:application/vnd.api+json Content-Type:application/vnd.api+json Api-Key:KKKKKKKK-KKKK-KKKK-KKKK-KKKKKKKKKKKK