docs: add API authentication guidance to bugfix tutorial

[jwm4]

Summary

• Add a Prerequisites section to the tutorial's automation guide with
  concrete instructions for obtaining ACP_API_URL, ACP_PROJECT, and
  ACP_TOKEN
• Include the UAT environment backend route URL so users can copy it directly
• Explain why the browser UI URL does not work for API calls (OAuth proxy
  strips bearer tokens) and that the backend route must be used instead
• Add a note to the GitHub Action section about storing the backend route URL
  and token as repository secrets

Context

Discovered while testing the tutorial's curl example end-to-end. The request
schema was correct, but users had no way to know which URL to use or how to
get a token. The browser UI URL returns 401 User token required because the
OAuth proxy authenticates the token but strips it before forwarding to the
backend. The backend route (backend-route-ambient-code.*) bypasses the proxy
and works with bearer tokens directly.

See RHOAIENG-55622 for
the related work to add workflow support to the public API.

Test plan

• Verify the UAT backend route URL in the tutorial is reachable
• Confirm the curl example works with a valid token and the documented URL
• Review the prerequisite instructions for clarity

Made with Cursor

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 2d7e7b0f-c6ef-429c-bc79-45d5b1ed2351

📥 Commits

Reviewing files that changed from the base of the PR and between 2b9d35b and ac57e28.

📒 Files selected for processing (1)

• docs/bugfix-tutorial.md

Cache: Disabled due to data retention organization setting

Knowledge base: Disabled due to data retention organization setting

---

Walkthrough

Updated the automation section of the tutorial documentation to provide REST API configuration details, replacing the generic "How it works" heading with "Using the REST API." Added documentation for required environment variables (ACP_API_URL, ACP_PROJECT, ACP_TOKEN) and clarified that ACP_API_URL must point to the backend route to avoid authentication errors.

Changes

Cohort / File(s)	Summary
Documentation Update docs/bugfix-tutorial.md	Replaced "How it works" heading with "Using the REST API" section. Added subsections documenting required configuration values (ACP_API_URL, ACP_PROJECT, ACP_TOKEN). Clarified that ACP_API_URL must reference the backend route to prevent 401 User token required errors. Added "Creating a session" subsection label and GitHub Actions repository secrets storage instructions.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~8 minutes

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}