In summary, a 401 unauthorized response should be used for missing or bad authentication, and a 403 forbidden response should be used afterwards, when the user is authenticated but isn’t authorized to perform the requested operation on the given resource. This error signals that the server requires authentication for access, but the client failed to provide valid credentials or omitted them entirely.
What is the 401 unauthorized error To solve it, first test the request with curl to see if the problem comes from your code or the api key. A 401 unauthorized error means your request didn’t pass authentication — most often because the api key is missing, wrong, or restricted
