2 Answer(s)
-
0
In ABP applications, when running in the Development environment, detailed error messages (such as 401 Unauthorized) are shown by default. However, in the Production environment, ABP hides detailed error information and returns a generic 500 Internal Server Error for unhandled exceptions or unauthorized access, to avoid leaking sensitive information.
This behavior is by design for security reasons. If you want to return proper status codes (like 401) in Production, ensure that your exception handling and authentication middleware are configured correctly, and that you are not catching and re-throwing exceptions as generic errors.
Also, make sure your application is not exposing detailed errors in Production, as this is a security risk. The 500 error is a safe default.
For more details, see the official ABP documentation:
This response was generated by AI. If it didn’t solve your problem, feel free to post a new answer — our support team will jump in to help you soon.
-
0
hi
Can you share the
logs.txt
from theDevelopment
andProduction
environments?Also, the
API
startup module code.liming.ma@volosoft.com
Thanks.