During the meeting, the State Changers discussed the issue with Zera's API. They focused on the process of generating a bearer token and using it for subsequent subcalls. They talked about the correct way to encode the client credentials (client ID and client secret) using base64 encoding. They clarified that basic authentication is not secure and is typically used for username/password authentication, while bearer tokens are used for JWT. They also discussed the importance of not sharing client keys with the community and the need for secure sharing of knowledge. The State Changers troubleshooted the issue of an invalid client and discovered that the authorization key value was incorrect. They explored the option of using basic authentication instead of manually setting the header. They also discussed different methods for encoding base64, including using Xano function or Postman's built-in features.
(Source: Office Hours 10/18 )
