I can only speculate. 401’s are a result of a bad auth header or even failed decryption in a catch all it appears. I can only speculate that the shared key and nonce being used are not extracted right somehow. But I’m afraid you’ll only know where it breaks if you compile the launcher yourself and debug. You can use other clients listed at SAFE API Client Libraries (Go, Ruby, ...) (and even use their shared keys yourself) to test on your end as well.