Just noticed this issue today. Generating an api key for all users with global scopes, then updating a topic will result in an invalid_access curl --location --request PUT 'https://example.com/t/-/365.json' \ --header 'Api-User: system' \ --header 'Api-Key: ***' \ --header 'Content-Type: applicati…

Invalid Access using Global Key on All users

david (David Taylor) November 29, 2020, 6:38pm 2

This should be Api-Username, not Api-User

This header is only used for “all user” api keys, so that’s why it worked when you scoped the key to a specific user.

Topic		Replies	Views
Unable to edit topic via API despite topic write access Bug rest-api	5	704	March 7, 2022
Generate/Regenerate api_key for a user API not working Dev rest-api	5	855	January 5, 2020
API endpoint users/by-external/ failing with authorization headers, works without Bug rest-api	3	523	June 26, 2023
Invalid_access error Support	6	709	January 11, 2021
Issues using API with long-established/working key Support	2	353	April 20, 2022