Unauthorized (HTTP 401)

The HCSS API returns Unauthorized (HTTP 401) if the authentication token is missing or expired.

Most of the time, this error code is caused by a missing token.  See the steps for requesting tokens.  Make sure the token is current and that the authorization header is formatted correctly.  (i.e., the word Bearer, followed by a space, followed by the value of the access_token)

Tokens typically last for one hour once issued.  Once your token expires, you should request another.  Attempting to make a call with an expired token will result in an Unauthorized Request.  The one-hour-expiry is a security measure: if a token is compromised, the time-window for misusing the token is minimized.