Hi Chatree, The API uses sessions or authentication. I second Richard's recommendation to look at an existing client to see how that works. Essentially you need to POST api2/session with your token in order to get a session ID, then you need to include that session ID in all subsequent requests as a cookie header with the JSESSIONID identifier.
Once you do this, try making your GET request to /api2/users again and you should be more successful. If you're trying to access the API from Java, you may want to consider extending the Java client that Richard mentions. Thanks, Ethan On Fri, Jan 15, 2010 at 6:01 AM, Chatree Srichart <[email protected]> wrote: > Thank you Richard Hirsch, > > But I don't know where the example you said. Can you tell me? > And I really don't understand about "403 Forbidden" error. > > Regards, >
