[GH-ISSUE #1060] Documentation for Using Tokens via PowerShell Appears to be Incorrect #743

New issue

Closed

opened 2026-05-07 00:27:06 +02:00 by BreizhHardware · 3 comments

BreizhHardware commented 2026-05-07 00:27:06 +02:00

Owner

Copy link

Originally created by @theparadox1083 on GitHub (Mar 20, 2024).
Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/1060

🐞 Describe the bug
In the documentation here: https://docs.ntfy.sh/publish/#access-tokens
The PowerShell 7+ example is

# With PowerShell 7 or greater, we can use the Authentication and Token parameters
$Request = @{
  Method = "POST"
  URI = "https://ntfy.example.com/mysecrets"
  Authorization = "Bearer"
  Token = "tk_AgQdq7mVBoFD37zQVN29RhuMzNIz2"
  Body = "Look ma, with auth"
}
Invoke-RestMethod @Request

I tried this out and encountered two problems using Invoke-RestMethod as used in the example in the ntfy documentation.

1. The parameter Authorization should be Authentication - your comment mentions the correct parameter but the example uses the a parameter that doesn't exist.
2. PowerShell requires the token be a SecureString

Understandably, the second issue might require some explanation for anyone not familiar with PowerShell but the code below technically works. Ideally you'd want to import a SecureString from a file or vault or something but I don't see any other token examples make an effort to keep the token secret so I didn't bother with that in my recommended correction - I just convert on the fly which is absolutely not recommended.

# With PowerShell 7 or greater, we can use the Authentication and Token parameters
# The Token parameter must be in the form of a System.Security.SecureString

$Request = @{
  Method = "POST"
  URI = "https://ntfy.example.com/mysecrets"
  Authentication = "Bearer"
  Token = ConvertTo-SecureString "tk_AgQdq7mVBoFD37zQVN29RhuMzNIz2" -AsPlainText
  Body = "Look ma, with auth"
}
Invoke-RestMethod @Request

💻 Components impacted
Documentation regarding Access Tokens and PowerShell 7+

💡 Screenshots and/or logs

Re 1:

|
|  Invoke-RestMethod @Request
|                    ~~~~~~~~
| A parameter cannot be found that matches parameter name 'Authorization'.

Re 2:

|
|  Invoke-RestMethod @Request
|                    ~~~~~~~~
| Cannot bind parameter 'Token'. Cannot convert the value of type "System.String" to type "System.Security.SecureString".

🔮 Additional context

Originally created by @theparadox1083 on GitHub (Mar 20, 2024). Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/1060 :lady_beetle: **Describe the bug** In the documentation here: [https://docs.ntfy.sh/publish/#access-tokens](https://docs.ntfy.sh/publish/#access-tokens) The PowerShell 7+ example is ```PowerShell # With PowerShell 7 or greater, we can use the Authentication and Token parameters $Request = @{ Method = "POST" URI = "https://ntfy.example.com/mysecrets" Authorization = "Bearer" Token = "tk_AgQdq7mVBoFD37zQVN29RhuMzNIz2" Body = "Look ma, with auth" } Invoke-RestMethod @Request ``` I tried this out and encountered two problems using [Invoke-RestMethod](https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.utility/invoke-restmethod?view=powershell-7.4) as used in the [example](https://docs.ntfy.sh/publish/#access-tokens) in the ntfy documentation. 1. The parameter `Authorization` should be `Authentication` - your comment mentions the correct parameter but the example uses the a parameter that doesn't exist. 2. PowerShell requires the token be a [SecureString](https://learn.microsoft.com/en-us/dotnet/api/system.security.securestring?view=net-8.0) Understandably, the second issue might require some explanation for anyone not familiar with PowerShell but the code below technically works. Ideally you'd want to import a SecureString from a file or vault or something but I don't see any other token examples make an effort to keep the token secret so I didn't bother with that in my recommended correction - I just convert on the fly which is absolutely not recommended. ```PowerShell # With PowerShell 7 or greater, we can use the Authentication and Token parameters # The Token parameter must be in the form of a System.Security.SecureString $Request = @{ Method = "POST" URI = "https://ntfy.example.com/mysecrets" Authentication = "Bearer" Token = ConvertTo-SecureString "tk_AgQdq7mVBoFD37zQVN29RhuMzNIz2" -AsPlainText Body = "Look ma, with auth" } Invoke-RestMethod @Request ``` :computer: **Components impacted** Documentation regarding Access Tokens and PowerShell 7+ :bulb: **Screenshots and/or logs** Re 1: ``` | | Invoke-RestMethod @Request | ~~~~~~~~ | A parameter cannot be found that matches parameter name 'Authorization'. ``` Re 2: ``` | | Invoke-RestMethod @Request | ~~~~~~~~ | Cannot bind parameter 'Token'. Cannot convert the value of type "System.String" to type "System.Security.SecureString". ``` :crystal_ball: **Additional context**

BreizhHardware 2026-05-07 00:27:06 +02:00

• closed this issue
• added the
  🪲 bug
  label

BreizhHardware commented 2026-05-07 00:27:06 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Mar 21, 2024):

All the PowerShell stuff is contributed by other people, so I do not know what is best practice or works. WOuld you be able to create a pull request with your suggestions?

<!-- gh-comment-id:2011045188 --> @binwiederhier commented on GitHub (Mar 21, 2024): All the PowerShell stuff is contributed by other people, so I do not know what is best practice or works. WOuld you be able to create a pull request with your suggestions?

BreizhHardware commented 2026-05-07 00:27:06 +02:00

Author

Owner

Copy link

@theparadox1083 commented on GitHub (Mar 21, 2024):

Done - I just created my first PR ever! Hopefully I did it correctly?

<!-- gh-comment-id:2012339316 --> @theparadox1083 commented on GitHub (Mar 21, 2024): Done - I just created my first PR ever! Hopefully I did it correctly?

BreizhHardware commented 2026-05-07 00:27:07 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Mar 25, 2024):

Congrats on your first-ever PR. You did everything right. Thank you for your contribution!

<!-- gh-comment-id:2018017949 --> @binwiederhier commented on GitHub (Mar 25, 2024): Congrats on your first-ever PR. You did everything right. Thank you for your contribution!

BreizhHardware referenced this issue 2026-05-07 01:01:55 +02:00

[PR #743] [MERGED] [web] remove unused @emotion packages #1397

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dependabot/npm_and_yarn/web/fast-uri-3.1.2

email-verification

attachment-no-http2

attachment-fixes

attachment-s3

config-generator

postgres-replica

dockers-v2

postgres-support

postgres-webpush+user+message

postgres-webpush+user

postgres-webpush

1364-copy-action

crashfix

user-header

scalar-api-docs

cancel-scheduled

update-available

windows-server

303-update-notifications

postgres

admin-ui

require-login

http-clipboard

message-cache-lock

debian-stripe

predefined-users

busy-timeout

template-dir

ipv6

client-ip-header

apns-fix

feat_optional_require_login

security-updates

pg-message-cache

templating-disallow

templating-3

templating-2

message-size-limit+delay-limit

remove-rate-topics

html-emails

cf-priority

acl-underscores

auth-user-header

markdown

img-attach

web-improvements

utf8-headers

matrix-507-reject

http-response-writer

new-homepage-design

e2e

canary

windows

electron

update-messages

webhook-templating

v2.22.0

v2.21.0

v2.20.1

v2.20.0

v2.19.2

v2.19.1

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.14.0

v2.13.0

v2.12.0

v2.11.0

v2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.2

v2.6.1

v2.6.0

v2.5.0

v2.4.0

v2.3.1

v2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.31.0

v1.30.1

v1.29.1

v1.29.0

v1.28.0

v1.27.2

v1.27.1

v1.26.0

v1.25.2

v1.25.1

v1.25.0

v1.24.0

v1.23.0

v1.22.0

v1.21.2

v1.21.1

v1.21.0

v1.20.0

v1.19.0

v1.18.1

v1.18.0

v1.17.1

v1.17.0

v1.16.0

v1.15.0

v1.14.1

v1.14.0

v1.13.0

v1.12.1

v1.12.0

v1.11.1

v1.11.2

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.1

v1.6.0

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.3

v1.3.1

v1.3.0

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.0

v0.0.5

v0.0.4

v0.0.3

v0.0.2

v0.0.1

Labels

Clear labels   

ai-generated

  

android-app

  

android-app

  

android-app

  

🪲 bug

  

build

  

build

  

dependencies

  

docs

  

enhancement

  

enhancement

  

🔥 HOT

  

in-progress 🏃

  

ios

  

prio:low

  

prio:low

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

🔒 security

  

server

  

server

  

unified-push

  

web-app

  

website

No labels

ai-generated

android-app

android-app

android-app

🪲 bug

build

build

dependencies

docs

enhancement

enhancement

🔥 HOT

in-progress 🏃

ios

prio:low

prio:low

pull-request

question

🔒 security

server

server

unified-push

web-app

website

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ntfy#743

No description provided.