Error 401 Unauthorized

GET https://intra.quercus.palustris.dk/api/statistics?itemsPerPage=25&order%5Bid%5D=DESC&page=1

IP
216.73.216.144
Profiled on
Token
7cce5d

Request / Response

Request

GET Parameters

Key Value
itemsPerPage 
"25"
order 
[
  "id" => "DESC"
]
page 
"1"

POST Parameters

No POST parameters

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_api_operation 
ApiPlatform\Metadata\GetCollection {#990
  #parameters: null
  #shortName: "Statistics"
  #class: "App\Entity\Statistics"
  #description: null
  #urlGenerationStrategy: null
  #deprecationReason: null
  #normalizationContext: null
  #denormalizationContext: null
  #collectDenormalizationErrors: null
  #validationContext: null
  #filters: []
  #mercure: null
  #messenger: null
  #input: null
  #output: null
  #order: null
  #fetchPartial: null
  #forceEager: null
  #paginationEnabled: null
  #paginationType: null
  #paginationItemsPerPage: null
  #paginationMaximumItemsPerPage: null
  #paginationPartial: null
  #paginationClientEnabled: null
  #paginationClientItemsPerPage: true
  #paginationClientPartial: null
  #paginationFetchJoinCollection: null
  #paginationUseOutputWalkers: null
  #security: null
  #securityMessage: null
  #securityPostDenormalize: null
  #securityPostDenormalizeMessage: null
  #securityPostValidation: null
  #securityPostValidationMessage: null
  #provider: "App\State\StatisticsStateProvider"
  #processor: null
  #stateOptions: null
  #rules: null
  #policy: null
  #middleware: null
  #queryParameterValidationEnabled: null
  #strictQueryParameterValidation: null
  #hideHydraOperation: null
  #extraProperties: [
    "standard_put" => false
    "rfc_7807_compliant_errors" => true
    "pagination_items_per_page_parameter_name" => "itemsPerPage"
    "pagination_page_parameter_name" => "page"
    "eager_loading" => null
  ]
  #paginationViaCursor: null
  #read: null
  #deserialize: null
  #validate: null
  #write: null
  #serialize: null
  #priority: 0
  #name: "_api_/statistics{._format}_get_collection"
  #method: "GET"
  #uriTemplate: "/statistics{._format}"
  #types: null
  #formats: null
  #inputFormats: [
    "jsonld" => [
      "application/ld+json"
    ]
    "json" => [
      "application/json"
    ]
    "html" => [
      "application/html"
    ]
  ]
  #outputFormats: [
    "jsonld" => [
      "application/ld+json"
    ]
    "json" => [
      "application/json"
    ]
    "html" => [
      "application/html"
    ]
  ]
  #uriVariables: null
  #routePrefix: null
  #routeName: null
  #defaults: null
  #requirements: null
  #options: null
  #stateless: true
  #sunset: null
  #acceptPatch: null
  #status: null
  #host: null
  #schemes: null
  #condition: null
  #controller: null
  #headers: null
  #cacheHeaders: [
    "max_age" => 0
    "shared_max_age" => 3600
    "vary" => [
      "Content-Type"
      "Authorization"
      "Origin"
    ]
  ]
  #hydraContext: null
  #openapi: null
  #exceptionToStatus: null
  #links: null
  #errors: null
  -itemUriTemplate: null
}
_api_operation_name 
"_api_/statistics{._format}_get_collection"
_api_resource_class 
"App\Entity\Statistics"
_controller 
"api_platform.action.placeholder"
_firewall_context 
"security.firewall.map.context.api"
_format 
null
_route 
"_api_/statistics{._format}_get_collection"
_route_params 
[
  "_stateless" => true
  "_api_resource_class" => "App\Entity\Statistics"
  "_api_operation_name" => "_api_/statistics{._format}_get_collection"
  "_format" => null
]
_security_authenticators 
[]
_security_skipped_authenticators 
[
  Symfony\Component\Security\Http\Authenticator\Debug\TraceableAuthenticator {#1091
    -supports: false
    -passport: null
    -duration: null
    -stub: "Lexik\Bundle\JWTAuthenticationBundle\Security\Authenticator\JWTAuthenticator"
    -authenticated: null
    -exception: null
    -authenticator: Lexik\Bundle\JWTAuthenticationBundle\Security\Authenticator\JWTAuthenticator {#992 …}
  }
  Symfony\Component\Security\Http\Authenticator\Debug\TraceableAuthenticator {#1115
    -supports: false
    -passport: null
    -duration: null
    -stub: "Gesdinet\JWTRefreshTokenBundle\Security\Http\Authenticator\RefreshTokenAuthenticator"
    -authenticated: null
    -exception: null
    -authenticator: Gesdinet\JWTRefreshTokenBundle\Security\Http\Authenticator\RefreshTokenAuthenticator {#1155 …}
  }
]
_stateless 
true
_stopwatch_token 
"a29aad"
input_format 
null

Request Headers

Header Value
accept 
"*/*"
accept-encoding 
"gzip, br, zstd, deflate"
host 
"intra.quercus.palustris.dk"
user-agent 
"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
x-forwarded-for 
"216.73.216.144"
x-forwarded-proto 
"https"
x-forwarded-scheme 
"https"
x-php-ob-level 
"1"
x-real-ip 
"216.73.216.144"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control 
"no-cache, private"
content-type 
"application/json"
date 
"Fri, 19 Sep 2025 06:43:42 GMT"
www-authenticate 
"Bearer"
x-debug-token 
"7cce5d"

Cookies

Request Cookies

No request cookies

Response Cookies

No response cookies

Session

Session Metadata

No session metadata

Session Attributes

No session attributes

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
APP_ENV 
"dev"
APP_SECRET 
"d88463bcea99956a725b1a1c42cfc1af"
CORS_ALLOW_ORIGIN 
"^https?://(localhost|127\.0\.0\.1)(:[0-9]+)?$"
DATABASE_URL 
"postgresql://symfony:ChangeMe@127.0.0.1:5432/app?serverVersion=16.0.0&charset=utf8"
DYNACCOUNT_API_ID 
"5212"
DYNACCOUNT_API_KEY 
"6f96f5158b6d040b560f84361df47cc368bac102"
DYNACCOUNT_API_SECRET 
"7b6177005f43b8909a1cb5a9bab467655cc2e2b6"
JWT_PASSPHRASE 
"intra"
JWT_PUBLIC_KEY 
"%kernel.project_dir%/config/jwt/public.pem"
JWT_SECRET_KEY 
"%kernel.project_dir%/config/jwt/private.pem"
MESSENGER_TRANSPORT_DSN 
"doctrine://default"
MOBILEPAY_API_KEY 
"5DD2A8440C8B949A4CA6F83ECDC4233DA8C40D9F64925F8A3399930CC7A1C8DB"
MOBILEPAY_CLIENT_NAME 
"mads@gartneriet.dk"
MOBILEPAY_CLIENT_SECRET 
"Gartner1"
POSTGRES_DB 
"intra.gartneriet.dk"
POSTGRES_HOST 
"postgresql.localnet"
POSTGRES_PASSWORD 
"Intra44"
POSTGRES_USER 
"intra.gartneriet.dk"
PROXY 
"https://intra.quercus.palustris.dk/"
SUMUP_API_KEY 
"sup_pk_1XraFXSr7KFxtGVEv2CcewPoFgKbTkmem"
SUMUP_API_SECRET 
"sup_sk_1ndZxqafIdJAI4twUYO2MdkPIK64pnG9J"
SUMUP_CLIENT_ID 
"cc_classic_1qYgveGXuk5bJ3P8K0E634UxiPRW0"
SUMUP_CLIENT_SECRET 
"cc_sk_classic_IuSYeoq7E5NEk3WIHQbYMoh4cYj7oQLebQmsm3OG5Fk6XBxoVF"
ZETTLE_API_KEY 
"eyJraWQiOiIwIiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJpWmV0dGxlIiwiYXVkIjoiQVBJIiwiZXhwIjoyNTc2NDkyOTg4LCJzdWIiOiI2Y2E4NjI5MC1kNWUxLTExZTQtODcwNC1lNGEyOWVjYzlhMDkiLCJpYXQiOjE2Mjk3ODUyMTIsInJlbmV3ZWQiOmZhbHNlLCJjbGllbnRfaWQiOiI3OWNhZjZhMC0wNGExLTExZWMtODhjOS04MGYzMTgxOTY0YzkiLCJzY29wZSI6WyJSRUFEOkZJTkFOQ0UiLCJSRUFEOlBVUkNIQVNFIl0sInVzZXIiOnsidXNlclR5cGUiOiJVU0VSIiwidXVpZCI6IjZjYTg2MjkwLWQ1ZTEtMTFlNC04NzA0LWU0YTI5ZWNjOWEwOSIsIm9yZ1V1aWQiOiI2Y2EzMzI3MC1kNWUxLTExZTQtYWI0ZC00NzdlMDI4MDJlOTEiLCJ1c2VyUm9sZSI6Ik9XTkVSIn0sInR5cGUiOiJ1c2VyLWFzc2VydGlvbiJ9.lJP8mUi9e0XU6czQgbOixA_zgfzbJJe1KMxJbFwuxq9vu5I5fk7hHNpOLXC_i5cd2IoqOkavxPjVr2qjFb2jrAmRckZTVWcdreqlFroADUr6547uBGnpA4zgiHCW3c9ALi7nTYhUN8w2JmsRhuTublr3p_1UgvWM9pc4Zh7mJBWyWHyLLC7A73qh2pSGl1Et0I6WGFu0aWKAqvA_LG_4-khBdhcDrYdK9-Oyn4KUqpl2rwzz-cTgW5mGZ0ZM03CpF4HnuyOunKssyvP9C6y83BPZ74Vgy5ih9AackkLq1Vw71BifSGoMYysnXRzGj6Pqg57UwJWJNjqQKxNNtOgLpw"
ZETTLE_CLIENT_ID 
"79caf6a0-04a1-11ec-88c9-80f3181964c9"

Defined as regular env variables

Key Value
APPLICATION_ENV 
"development"
APP_DEBUG 
"1"
CONTENT_LENGTH 
""
CONTENT_TYPE 
""
DOCUMENT_ROOT 
"/home/mlj/hosts/intra.gartneriet.dk/docs"
DOCUMENT_URI 
"/index.php"
FCGI_ROLE 
"RESPONDER"
GATEWAY_INTERFACE 
"CGI/1.1"
HOME 
"/var/lib/wwwrun"
HTTP_ACCEPT 
"*/*"
HTTP_ACCEPT_ENCODING 
"gzip, br, zstd, deflate"
HTTP_HOST 
"intra.quercus.palustris.dk"
HTTP_USER_AGENT 
"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
HTTP_X_FORWARDED_FOR 
"216.73.216.144"
HTTP_X_FORWARDED_PROTO 
"https"
HTTP_X_FORWARDED_SCHEME 
"https"
HTTP_X_REAL_IP 
"216.73.216.144"
PHP_SELF 
"/index.php"
QUERY_STRING 
"itemsPerPage=25&order%5Bid%5D=DESC&page=1"
REDIRECT_STATUS 
"200"
REMOTE_ADDR 
"10.88.0.2"
REMOTE_PORT 
"45300"
REQUEST_METHOD 
"GET"
REQUEST_SCHEME 
"http"
REQUEST_TIME 
1758264222
REQUEST_TIME_FLOAT 
1758264222.5135
REQUEST_URI 
"/api/statistics?itemsPerPage=25&order%5Bid%5D=DESC&page=1"
SCRIPT_FILENAME 
"/home/mlj/hosts/intra.gartneriet.dk/docs/index.php"
SCRIPT_NAME 
"/index.php"
SERVER_ADDR 
"192.168.1.4"
SERVER_NAME 
"intra.quercus.palustris.dk"
SERVER_PORT 
"91"
SERVER_PROTOCOL 
"HTTP/1.1"
SERVER_SOFTWARE 
"nginx/1.21.5"
SYMFONY_DOTENV_PATH 
"/home/mlj/hosts/intra.gartneriet.dk/.env"
SYMFONY_DOTENV_VARS 
"APP_ENV,APP_SECRET,CORS_ALLOW_ORIGIN,DATABASE_URL,JWT_SECRET_KEY,JWT_PUBLIC_KEY,JWT_PASSPHRASE,MESSENGER_TRANSPORT_DSN,ZETTLE_CLIENT_ID,ZETTLE_API_KEY,DYNACCOUNT_API_ID,DYNACCOUNT_API_KEY,DYNACCOUNT_API_SECRET,PROXY,POSTGRES_USER,POSTGRES_PASSWORD,POSTGRES_HOST,POSTGRES_DB,MOBILEPAY_API_KEY,SUMUP_CLIENT_ID,SUMUP_CLIENT_SECRET,SUMUP_API_KEY,SUMUP_API_SECRET,MOBILEPAY_CLIENT_NAME,MOBILEPAY_CLIENT_SECRET"
USER 
"wwwrun"