It seems like you may have some issues with route matching when running the tests in the suite. Can you share details about your authentication setup (e.g., Passport, Sanctum) ?

BTW, for failed authentication, you should be getting a 401 Unauthorized response, not a 404 or 200. You can use dd($response) to check what is return on posted JSON.