API authentication returns 400 when providing the wrong credentials (#959) · Issues · thalia / concrexit

API authentication returns 400 when providing the wrong credentials

The API /token-auth/ returns a 400 status code when the user passed incorrect credentials, which makes it unclear why the request was denied.

To make use of the correct HTTP status code, which could clarify the reason an authentication request was denied.

/token-auth/ returns a 400 when providing incorrect credentials

/token-auth/ returns a 401(?) when providing incorrect credentials

<!--
    This template is for changes that do not affect the behaviour of the website.

** If you are not in the Technicie, there is a very high chance that you
       should not use this template

Examples:

* Changes in CI
     * Refactoring of code
     * Technicie-facing documentation
-->

### One-sentence description

The API `/token-auth/` returns a 400 status code when the user passed incorrect credentials, which makes it unclear why the request was denied.

### Why?

To make use of the correct HTTP status code, which could clarify the reason an authentication request was denied.

### Current implementation

`/token-auth/` returns a 400 when providing incorrect credentials

### Suggested implementation

`/token-auth/` returns a 401(?) when providing incorrect credentials

To upload designs, you'll need to enable LFS. More information