>>>>>>
>>>>>>Ok, I see two potential issues here: a) extraction of the correct value of the token from the JSON reply; b) the header may require some kind of encoding (base64, for instance). Can you paste here the C# code, with any sensitive information properly redacted?
>>>>>
>>>>>This is the C# code that works:
>>>>>

>>>>>var request = new RestRequest('\methodtogettable', Method.GET);
>>>>>request.AddHeader("Authorization", "bearer " + _token);
>>>>>var response = _client.Execute(request);
>>>>>

>>>>>
>>>>>And I am communicating with the Web API developer over email and he didn't mention need for encoding at all.
>>>>
>>>>How is your VFP code to get the authorization token?
>>>>
>>>>By the way: 401 = Unauthorized...
>>>
>>>Here is the VFP code that get the authorization token (and it works since I can see the value in the debugger):
>>>
>>>

>>>loUser = newObject('wwHTTP', 'wwHTTP.prg')
>>>loUser.addPostKey('grant_type', 'password')
>>>loUser.addPostKey('username', '1222')
>>>loUser.addPostKey('password', 'GDF')
>>>
>>>cToken = loUser.httppost("http://www.sitename.com/webapi/token")
>>>

>>>
>>>I also just checked the value of the header passed on the GET call in Fiddler and the Header security value is there complete.
>>
>>You said the response was in JSON format, so how do you extract the actual token from the JSON reply? In your code, isn't cToken being assigned the full reply, and not just the token?
>
>Do you know if VFP has a function to extract a value (e.g. token) from a JSON format string?

For a quick extraction, a STREXTRACT() may be sufficient, but considering that after authorization clearance you'll need to work with more complex replies, it's better to use a library. Rick provides one, but check also Marco's on VFPX (look for nfJson).