Log in Register
× Requests and support related to jBackend.

"Access not authorized" "Authentication required"

  • xengent
  • Topic Author
  • Offline
  • New Member
  • New Member
More
8 years 11 months ago #4942 by xengent
"Access not authorized" "Authentication required" was created by xengent
I can't seem to get this call to work:

mywebsite.com/index.php?option=com_jbackend&view=request&action=get&module=content&resource=articles&api_key=abcxyz&id=6

I'm not using an endpoint or "Itemid" in my string. I tried both Global and Endpoint and get the same problem.

The article's ACL permission is "Registered".

When I have my Global Config set to API and an API key with no user:

I get the following error:

{
"status": "ko",
"error_code": "CNT_ANA",
"error_description": "Access not authorized"
}


When I have my Global Config set to API and an API key with a user (who has the "Registered" permission):


I still get the following error:

{
"status": "ko",
"error_code": "CNT_ANA",
"error_description": "Access not authorized"
}


When I have my Global Config set to User and an API key with a user (who has the "Registered" permission):

{
"status": "ko",
"error_code": "REQ_AUR",
"error_description": "Authentication required"
}

What am I doing wrong here?

Please Log in or Create an account to join the conversation.

  • xengent
  • Topic Author
  • Offline
  • New Member
  • New Member
More
8 years 11 months ago - 8 years 11 months ago #4943 by xengent
Replied by xengent on topic "Access not authorized" "Authentication required"
Ok. When I set the "jBackend - Content Module" settings to have "Filter access" to be "No", I can access this article fine.

Is this the right thing to do (setting "Filter access" to "No")?

I'm thinking this is the wrong thing to do, since it seems to give the API access to articles with all permission levels.

How do I solve my problem here?
Last edit: 8 years 11 months ago by xengent.

Please Log in or Create an account to join the conversation.

  • xengent
  • Topic Author
  • Offline
  • New Member
  • New Member
More
8 years 11 months ago #4944 by xengent
Replied by xengent on topic "Access not authorized" "Authentication required"
I read that I need to log the user in separately, so I did this through Postman (had to install interceptor), and seems to work once I sign the user in.

However, now I get access to all articles (deeper than registered) even though the user specified on the API key only has access to "registered".

Please Log in or Create an account to join the conversation.

  • xengent
  • Topic Author
  • Offline
  • New Member
  • New Member
More
8 years 11 months ago #4945 by xengent
Replied by xengent on topic "Access not authorized" "Authentication required"
I think I got it figured out.

Please Log in or Create an account to join the conversation.

More
8 years 11 months ago #4947 by admin
Replied by admin on topic "Access not authorized" "Authentication required"
Hi and sorry for delay,
probably the problem is solved, but I'd like to provide some information.

The CNT_ANA means you are trying to access to a content without required grants, as example, a registered only article when you are guest. And this should be the default case (usually you need to preserve the same grants).

The filter access params is used to disable this kind of check, but it should be used only if really needed (as example, the content is retrieved by an external system so you don't need to filter by groups).

I hope this is clear, just let me know if you have additional questions.

Kind regards,
Luigi

Please Log in or Create an account to join the conversation.

Time to create page: 0.144 seconds