AEM Cloud Service — Sling POST Servlet returns 403 "The access token is missing required scopes" with OAuth Server-to-Server credential

Question

Environment  - AEM as a Cloud Service (Author) - RDE  - Adobe App Builder / Adobe I/O Runtime (Server-to-Server OAuth credential)  - Node.js action using Axios to call AEM APIsWhat I'm trying to doI'm building an App Builder action that creates AEM Sites pages programmatically using the Sling POST Servlet. I have created another action already that creates and updates Content Fragments via the CF Management API(/adobe/sites/cf/fragments) which is working fine.For page creation, I'm POSTing to the page path with application/x-www-form-urlencoded:  POST /content/… (content path under which the PDP pages must be created)  Content-Type: application/x-www-form-urlencoded  Authorization: Bearer <IMS token>  _charset_=UTF-8&jcr%3AprimaryType=cq%3APage&jcr%…......The error  Every request to the Sling POST Servlet returns:  {    "type": "https://api.adobeaemcloud.com/adobe/meta/errors/forbidden",    "title": "Forbidden",    "status": 403,    "detail": "The access token is missing required scopes."  }  Current credential scopes  The Developer Console project has these APIs added:  - Content Fragment Management API → scope: aem.fragments.management  - AEM Folders API → scope: aem.foldersProduct Profiles : AEM Sites Content Managers - authorFull scope string in use: openid,AdobeID,aem.fragments.management,aem.foldersMy Questions:1. What is the correct IMS scope required to call the Sling POST Servlet on /content/... paths with a Server-to-Server credential?2. Is there an alternative OpenAPI endpoint for programmatic page creation that works with Server-to-Server credentials and the scopes currently available?Thanks in advance!

manav · Answer

Replied Here:

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded