403 access denied error when accessing the 3scale API

Solution Verified - Updated -

Issue

  • When making the below curl request, returns a 403 access denied error.

    curl -v  -X GET "https://{ADMIN-PORTRAL-DOMAIN}/admin/api/users.xml?access_token=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"

  • Following are the logs from the system-provider container of the system-app pod

    [xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Started GET "/admin/api/users.xml?access_token=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx" for xx.xx.xx.xx at 2052-00-00 00:00:00 +0000
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Processing by Admin::Api::UsersController#index as XML
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx]   Parameters: {"access_token"=>"xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"}
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] PermissionEnforcer: level = 
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Filter chain halted as :provider_required rendered or redirected
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] PermissionEnforcer#ensure clear level
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] PermissionEnforcer: level = 
[xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxx] [ADMIN_PORTAL_DOMAIN] [xx.xx.xx.xx] Completed 403 Forbidden in 15ms (Views: 0.1ms | ActiveRecord: 8.0ms)
xx.xx.xx.xx - - [27/Jan/2022:23:31:31 +0000] "GET /admin/api/users.xml?access_token=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx HTTP/1.1" 403 - 0.0000

Environment

  • Red Hat 3scale API Management
    • 2.10.0 On-premises

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content