noticed something here, dont underasand why. but here in Retrieve the registrations for a device in Apple Developer Documentation in Retrieve the registrations for a device. There is no Authorization in the header to include, however, other endpoints support that? Is this header will be sent from Walle? meaning that it has been missed in the documentation ?
https://developer.apple.com/documentation/walletorders/retrieve-the-registrations-for-a-device
Hi @Moh12,
You wrote:
There is no Authorization in the header to include, however, other endpoints support that?
This lack of an authorization header on the Retrieve the registrations for a device endpoint is by design:
GET
/v1/devices/{deviceLibraryIdentifier}/registrations/{orderTypeIdentifier}
This call is made by the device to your server and essentially asks the following:
"Hi, which orders associated with my device ID have changed since this timestamp?"
It intentionally omits the Authorization header because:
- it doesn't return sensitive order data—it only returns a list of order identifiers.
- the
deviceLibraryIdentifieracts as a scoping mechanism. - there's no per-order auth token context at this stage (as the device is asking broadly across registrations).
Cheers,
Paris X Pinkney | WWDR | DTS Engineer
