REST API crashes when using ClientCredentials OAuth

Hello,

We're trying to use the REST API for various external utilities to manage our data.

We are able to authenticate with Verint using ClientCredentials Oauth described here:
community.telligent.com/.../authentication

This works, we get an accessToken, refreshToken and expiry as expected.

However, when we try to use the accessToken in a request to pull some data, Verint crashes with a 500.  Here's what I'm seeing.

Request:

GET https://test.mphise.us/api.ashx/v2/groups.json
Authorization OAuth ece87f99a41b4ff892f703b5cb89fb131d8262b9e9ae4bf5b37aeff562446664
Accept application/json

Response:

500/Internal Server Error
Date: Wed, 30 Jun 2021 22:12:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2498
Connection: keep-alive
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: -1
Server: Microsoft-IIS/10.0
X-FRAME-OPTIONS: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
X-UA-Compatible: IE=Edge
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Telligent-Evolution: 12.x
X-Powered-By: ASP.NET

Is there a problem with how I'm formatting my GET request?  Note that the format of the Authorization header is OAuth [TOKEN] instead of Bearer [TOKEN] per the documentation here:
community.telligent.com/.../authentication

Thank you,

Chris

Parents Reply Children
  • If you get the same response from an API key, then it more than likely is not related to authentication at all.

  • Hi  

    I apologize for the delayed response.  In any case, I've re-implemented authentication from ClientCredentials to a simple API Key, however, I still get the 500 when I access any REST API endpoint.

    Request:

    GET https://test.mphise.us/api.ashx/v2/groups.json
    Rest-User-Token ajZmbDVmc244djNsdms5dGRsMndtbnUyeDNzbmFhYzpjaHJpcy53aWxraW5zb24=
    Accept application/json

    Response:

    500/Internal Server Error
    Date: Thu, 15 Jul 2021 18:57:14 GMT
    Content-Type: text/html; charset=utf-8
    Content-Length: 2498
    Connection: keep-alive
    Cache-Control: no-cache, no-store
    Pragma: no-cache
    Expires: -1
    Server: Microsoft-IIS/10.0
    X-FRAME-OPTIONS: SAMEORIGIN
    Content-Security-Policy: frame-ancestors 'self';
    X-UA-Compatible: IE=Edge
    X-XSS-Protection: 1; mode=block
    X-Content-Type-Options: nosniff
    X-Telligent-Evolution: 12.x
    X-Powered-By: ASP.NET

    -- html body omitted --

    Testing with the Web interface using my admin account:

    I have an admin account in our environment at https://test.mphise.us, however when I browse to https://test.mphise.us/api.ashx/v2/info.json with an authenticated browser session, Verint is giving me a 403.  A 403 is especially odd since I'm a full-access admin user, but maybe this is a tell that we're missing config.  Here's what I see:


    Is there anything special that I need to do in order to enable REST endpoints?  The 500 via the REST API with Oauth or API Key is cryptic, but the 403 via admin browser session is at least a valid web server response that suggests permissions or config could be missing.

    Thank you,

    Chris

  • You cannot access the REST API via a browser, authenticated or not, its not the same authentication process.  And did you disable all customizations as requested?  Including openId?

  • Have you checked the log for any exceptions?  I would suggest you really open a support case because to look any further we are going to need to see fiddler traces, etc  and that should only be passed through support and not here