Because providing this information to users who are not in the room would be surprising for those in the room, we only allow the room owner and users in the room to access this method. Room owners are authenticated via their HAWK credentials, while room participants are authenticated via the sessionToken bearer token provided to them when they joined the room.
Desktop users:
GET /rooms/3jKS_Els9IU HTTP/1.1
Host: localhost:5000
Standalone Client Users* For a desktop client user, the "Authorization" header field is populated with the HAWK token (using a scheme of "Hawk"), just like it is for other requests.* For the standalone client, the "Authorization" header field is encoded using [http: GET /rooms/3jKS_Els9IU?'''sessionToken=T1==cGFydG5lcl9pZD00NDY2OTEwMiZzaW''' HTTPtools.ietf.org/html/rfc1945#section-11.1Basic authentication].1 Accept: */* Accept-Encoding: gzip, deflate Host: localhost:5000 * '''sessionToken''' - The user ID portion is the sessionToken provided to the user when they joined the room, and the password is blank.
Response:
HTTP/1.1 200 OK
