401 from /userinfo

cem.it · February 1, 2020, 12:32am

Hello, we’ve just started seeing 401’s on our API tests that login and call /userinfo.
These run on every code commit, there has been no change to the credentials, configuration or tests themselves and so it seems there is a critical error with the endpoint.

Please urgently advise.

Kris.B · February 1, 2020, 12:51am

Hi @cem.it,

I just did a test and could not reproduce any problem calling the /userinfo endpoint on one of my tenants.

A 401 response most likely indicates a problem with the access token. For example, this could be due to the access token having expired or a JWT-formatted token being used without the /userinfo endpoint included as an audience.

cem.it · February 2, 2020, 10:17pm

The access token hasn’t expired as the login request precedes this call by milliseconds.

I don’t know what you mean by “included as an audience”

This was working on Friday, on Saturday it stopped working with no change on our side.

todd.orr · October 19, 2022, 7:24pm

We’re running into the same problem. We’ve verified the audience is correct. Have you come up with any solution?

Topic		Replies	Views
/userinfo call failing with proper aud in token Help jwt , userinfo	2	1490	November 4, 2022
Calling /userinfo returns an unauthorized error Help userinfo	3	8235	March 2, 2018
The /userinfo endpoint returns 401 (Unauthorized) Help lock , api , userinfo , audience	12	24262	January 9, 2023
/userinfo suddenly results in 401, unauthorized (CRITICAL!) Help userinfo , webauth , unauthorized	29	10041	March 2, 2018
Expired Access Token in /userinfo request [auth0-java] Help userinfo , access-token , auth0-java , token-expiration	7	4493	December 14, 2020

401 from /userinfo

Related topics