API Authorisation Issue:

There appears to be an issue in the plugin within src/API/Client.php relating to how authentication is determined.

The current implementation assumes that a global API key will always be in hexadecimal format. However, both global API keys and API Tokens are not hexadecimal. As a result, valid API credentials are not accepted as it uses the Bearer auth header.

In my case, this caused authentication to fail unless I bypassed the format check entirely and forced the use of the X_AUTH_EMAIL and X_AUTH_KEY headers. Doing so resolved the issue immediately.

It is possible that the format of API keys has changed since the plugin was last updated, which may also explain similar authentication issues reported by others.

The page I need help with: [log in to see the link]