Expand my Community achievements bar.

401: request is invalid, reason: failed authorization. Please verify your token and organization id

Avatar

Community Advisor and Adobe Champion
Community Advisor and Adobe Champion
10/4/21 7:47:03 PM

Following up with related reported issue around 401 erorr. 

I have observed that i cannot use Analytics/target api with "require-adobe-auth" : true. 

It all works well when i set it to false

Find below the error i get when i set to true. 

Could somebody help out before i push this app live? does not make sense to have it set to false in production. 

 

Anil_Umachigi_0-1633400939180.png

 

 

aio and node version tried 

  • @adobe/aio-cli/8.1.0 darwin-x64 node-v16.2.0
  • @adobe/aio-cli/8.1.0 darwin-x64 node-v14.17.0

ext.config.yml when i get that error

          inputs:
            LOG_LEVEL: debug
            companyId: $ANALYTICS_COMPANY_ID
            apiKey: $SERVICE_API_KEY
          annotations:
            require-adobe-auth: true
            final: true

 

 

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

App Builder

Views

1.9K

Replies

4
Sign in to like this content

Total Likes

Translate
Translate
4 Replies

Avatar

Employee
Employee
10/5/21 8:00:41 AM

Would you mind posting or sending me the code for that action so we can look at it closer?

Views

1.9K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee
Employee
10/5/21 8:45:40 AM
In response to dr_venture

BTW saw this note in the auth section of the product documentation

 

https://www.adobe.io/app-builder/docs/guides/security/

 

The validator action enabled by require-adobe-auth: true annotation requires the provided IMS access token to have the read_organizations scope. While it is always the case for user tokens used in SPAs, the JWT access tokens used in headless applicationss may not have this scope. This will be the case if it is generated to integrate with the following services:

  • Adobe Analytics
  • Adobe Campaign Standard
  • No API Service enabled

 

So check your .env file for a line like this and add read_organizations scope to it

AIO_ims_contexts_devlive__ms__demo__J__1632264104209_meta__scopes=["asset_compute_meta","ent_ccas_sdk"]

Views

1.8K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee
Employee
10/5/21 10:05:41 AM
In response to dr_venture

That does not seem like the fix though.  Now that I think about it more and look at the error closer.

 

Is the caller of that action a part of your org and are they passing AUTH header with the request to make that call?

Views

1.8K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor and Adobe Champion
Community Advisor and Adobe Champion
10/7/21 6:44:51 PM
In response to dr_venture

@dr_venture Thank you for getting back, have been scratching head over this for a while now! 

  • add the organisation scope and did not really help same issue. 
  • Yes the caller of the action from the UI (logged in as admin) is passing the auth header with the request. Will send you the code for reference. 

 

Views

1.8K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
I want to link Adobe Developer Console and LINEworks via API Solved

Views

203

Likes

0

Replies

6
OAuth2 Application generates Access Token but gives 401 when trying to consume Workfront Planning APIs Solved

Views

139

Likes

0

Replies

1
Getting all authentication failed

Views

107

Likes

0

Replies

1
Got email with subject [Action Required] Your integrations using Service Account (JWT) credentials will need to migrate

Views

131

Likes

0

Replies

1
Using AEP API to retrieve metadata for standard and custom schemas/classes

Views

188

Likes

0

Replies

2