This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

OAuth2 authentication error

ecreighton
New Contributor

โ€Ž01-04-2023 12:54 PM

I have built a pipeline that includes accessing a secure rest endpoint. I have created an account for OAuth2 authentication and tried all different grant types, however it doesnโ€™t seem as though the authentication for the account is being utilized in the pipeline. I consistently receive a 499 Token Required error.

I am not certain if I am not configuring the snap correctly or if it is a configuration issue on the account. The account shows that it has accepted the Client ID/Client Secret and produced a token with an expiration. The token refreshes successfully as well.

I have looked through the community site and setup the snaps using the documentation. At this point I feel Iโ€™ve exhausted my resources and could use some assistance.

Thanks in advance

0 Kudos
6 REPLIES 6

ddellsperger
Employee
Employee

โ€Ž01-04-2023 01:45 PM

There are two key points to look at when it comes to oauth2 accounts. Iโ€™m not sure what api you are using, but more likely than not its documentation talks about โ€œsending token as Authorization headerโ€. If thatโ€™s in the API spec, that means you need to check the โ€œHeader Authenticatedโ€ option in the account, that indicates that the access token (typically a bearer token) will be sent as an Authorization header to the end point in the format Bearer <access_token>. Different apis respond differently to missing that authorization, some will respond with a 401, it seems the one youโ€™re using responds with a 499.

0 Kudos

ecreighton
New Contributor
In response to ddellsperger

โ€Ž01-05-2023 11:59 AM

Thanks for the quick response. Iโ€™ve been looking into the documentation on my end (I am using an Esri ArcGIS Portal rest endpoint) and it seems as though it doesnโ€™t utilize authorization headers but passes them through the URL, although the documentation isnโ€™t completely clear and Iโ€™m still researching.

If I do check the header authenticated box in the account settings it does produce a error 498 which is an invalid token instead of a token required, so it does see one I assume

0 Kudos

ddellsperger
Employee
Employee
In response to ecreighton

โ€Ž01-06-2023 06:05 AM

yeah, I started looking through their documentation and it seems theyโ€™re using some fairly strange way of either doing the oauth calls or handling some other aspect. Itโ€™s really hard to get set up to test with them on my own, so Iโ€™m not totally sure how far I can get, but I have a few things going on my side that Iโ€™m going to look into if I get some time today. I donโ€™t even see any documentation regarding the 499 or 498 status codes (which are custom codes theyโ€™ve put together on their side).

0 Kudos

ecreighton
New Contributor
In response to ddellsperger

โ€Ž01-06-2023 02:02 PM

Thanks for your help, I appreciate it. Iโ€™m going to try it in a couple other test environments and see if I get different results. Additionally, if need be I may open a support ticket with Esri, although that may be as helpful as their documentation

0 Kudos