I'm hoping someone can help with probably a simple problem setting up ServiceAPI in a new site.
I'm trying to set up ServiceAPI to use AspNet Identity (which seems to be the default in a new site), rather than the membership provider. I've been following this link:
Do you have a valid certificate for https or have you set the episerver:serviceapi:requiressl appsetting to bypass the security check?
Can you show your post to get the token here? From the error message it looks like you are sending username/password in the header, not the body of the request