Hi Jacob, this is correct the create action requires a CSRF token.
Before doing the create action you can obtain a list of CSRF tokens from your session object.
Retrieve the list over association and use the list operation Head to obtain the last one. If no token exists, call the get list operation and check again afterwards.
Hey, this is very old but anyone can help with the headers of the get list? what did you put I am trying to put the bearer token with name = “Authorization” but I get a 401 error