Title: MISSING_AUTHORIZATION_HEADER Last modified: December 16, 2022 --- # MISSING_AUTHORIZATION_HEADER * Resolved [pingouin](https://wordpress.org/support/users/pingouin/) * (@pingouin) * [3 years, 5 months ago](https://wordpress.org/support/topic/missing_authorization_header/) * Hi all, * On Test Configuration, after put the Token string and click on “Check Token” I have the error message “MISSING_AUTHORIZATION_HEADER”. Same with the “Test Configuration” button. * Here is the htaccess file: * RewriteEngine On RewriteRule .* – [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] * RewriteCond %{HTTP:Authorization} ^(._) RewriteRule ^(._) – [E=HTTP_AUTHORIZATION:% 1] * RewriteBase / RewriteRule ^index.php$ – [L]RewriteCond %{REQUEST_FILENAME} !- fRewriteCond %{REQUEST_FILENAME} !-dRewriteRule . /index.php [L] * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fmissing_authorization_header%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 4 replies - 1 through 4 (of 4 total) * Plugin Support [abhiladdha07](https://wordpress.org/support/users/abhiladdha07/) * (@abhiladdha07) * [3 years, 5 months ago](https://wordpress.org/support/topic/missing_authorization_header/#post-16296977) * Hi [@pingouin](https://wordpress.org/support/users/pingouin/), * Thanks for reaching out to us. * Can you please try adding the following lines after the **RewriteBase** statement in your .httaccess file – * _RewriteCond %{HTTP:Authorization} ^(.) RewriteRule . – [e=HTTP\_AUTHORIZATION:% 1] * Also, remove the following statements as well from your .httaccess file * _RewriteRule .* – [E=HTTP\_AUTHORIZATION:%{HTTP:Authorization}]_ * _RewriteCond %{HTTP:Authorization} ^(.) RewriteRule ^(.) – [E=HTTP\_AUTHORIZATION:% 1]_ * Hope this helps and you can also check our full developer documentation [**here**](https://developers.miniorange.com/docs/rest-api-authentication/wordpress/jwt-authentication#resource-error-response). * Please update here once you try the above mentioned points and the result you got. * Thanks, * Team miniOrange * Thread Starter [pingouin](https://wordpress.org/support/users/pingouin/) * (@pingouin) * [3 years, 5 months ago](https://wordpress.org/support/topic/missing_authorization_header/#post-16298788) * I tested with these modifications, the result is that the “Check Token” and “ Test Configuration” buttons no longer work, there was no result in return. * ```wp-block-code RewriteEngine On RewriteBase / RewriteCond %{HTTP:Authorization} ^(.) RewriteRule . – [e=HTTP_AUTHORIZATION:%1] RewriteRule ^index\.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] ``` * I then moved the two lines all over the code, still with the same result. The only time the buttons reacted was by placing the two lines after /IfModule>. But the message was again “MISSING_AUTHORIZATION_HEADER” * I must also tell you that the site is hosted on a Ionos shared server. - This reply was modified 3 years, 5 months ago by [pingouin](https://wordpress.org/support/users/pingouin/). * Plugin Support [abhiladdha07](https://wordpress.org/support/users/abhiladdha07/) * (@abhiladdha07) * [3 years, 4 months ago](https://wordpress.org/support/topic/missing_authorization_header/#post-16301265) * Hi [@pingouin](https://wordpress.org/support/users/pingouin/), * Thanks for the update. * The htaccess rules look good but as you still have the same issue, can you please check with the IONOS server team if there is anything we need to do additionally to have these rules in effect? * Also, please make sure that there is no caching enabled on your WordPress site or on IONOS server. * In case the issue still persists, then we have one feature in the _Premium_ plugin named **Custom Header-based authentication**, where you can pass the Bearer token generated using JWT authentication in any custom header rather than passing in Authorization which your server is blocking. You can check more details about the feature set [**here**](https://plugins.miniorange.com/wordpress-rest-api-jwt-authentication-method#step_4). * Looking forward to hearing further updates from you. * Thanks, Team miniOrange * Plugin Support [abhiladdha07](https://wordpress.org/support/users/abhiladdha07/) * (@abhiladdha07) * [3 years, 4 months ago](https://wordpress.org/support/topic/missing_authorization_header/#post-16327426) * Hi [@pingouin](https://wordpress.org/support/users/pingouin/), * We haven’t heard back from you in the last couple of days, so we are marking this thread as resolved. You can always post your queries on this forum if you have any questions or face issues with our plugin. We’d be happy to help you. * Thanks, Team miniOrange Viewing 4 replies - 1 through 4 (of 4 total) The topic ‘MISSING_AUTHORIZATION_HEADER’ is closed to new replies. * ![](https://ps.w.org/wp-rest-api-authentication/assets/icon-128x128.png?rev=2084327) * [JWT Authentication for WP REST APIs](https://wordpress.org/plugins/wp-rest-api-authentication/) * [Frequently Asked Questions](https://wordpress.org/plugins/wp-rest-api-authentication/#faq) * [Support Threads](https://wordpress.org/support/plugin/wp-rest-api-authentication/) * [Active Topics](https://wordpress.org/support/plugin/wp-rest-api-authentication/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wp-rest-api-authentication/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wp-rest-api-authentication/reviews/) ## Tags * [authorization](https://wordpress.org/support/topic-tag/authorization/) * [header](https://wordpress.org/support/topic-tag/header/) * [jwt](https://wordpress.org/support/topic-tag/jwt/) * [token](https://wordpress.org/support/topic-tag/token/) * [wp rest api](https://wordpress.org/support/topic-tag/wp-rest-api/) * 4 replies * 2 participants * Last reply from: [abhiladdha07](https://wordpress.org/support/users/abhiladdha07/) * Last activity: [3 years, 4 months ago](https://wordpress.org/support/topic/missing_authorization_header/#post-16327426) * Status: resolved