403 access denied error when accessing the 3scale API
Issue
-
When making the below curl request, returns a 403 access denied error.
curl -v -X GET "https://{ADMIN-PORTRAL-DOMAIN}/admin/api/users.xml?access_token=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
-
Following are the logs from the system-provider container of the system-app pod
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Started GET "/admin/api/users.xml?access_token=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx" for xx.xx.xx.xx at 2052-00-00 00:00:00 +0000 [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Processing by Admin::Api::UsersController#index as XML [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Parameters: {"access_token"=>"xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"} [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] PermissionEnforcer: level = [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Filter chain halted as :provider_required rendered or redirected [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] PermissionEnforcer#ensure clear level [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] PermissionEnforcer: level = [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Completed 403 Forbidden in 15ms (Views: 0.1ms | ActiveRecord: 8.0ms) xx.xx.xx.xx - - [27/Jan/2022:23:31:31 +0000] "GET /admin/api/users.xml?access_token=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx HTTP/1.1" 403 - 0.0000
Environment
- Red Hat 3scale API Management
- 2.10.0 On-premises
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.