How to authorize a SPA to access an API?

SageFioLange · January 28, 2021, 5:55am

Hi,

I’m using an Auth0 API to authorize an AWS HttpAPI, and it works with the machine-to-machine test application that is auto-generated with every Auth0 API, however I can’t figure out how to get it to work with the Single Page Application that I have setup for the front-end login/logout functionality. What I’d like to happen is:

1: Login to web app via front-end (authenticated within the SPA users) ;
2: Get an access token from Auth0 API ;
3: Use access token to call the AWS HttpAPI ;

I’m getting stuck on step 2. Any help is much appreciated!

SageFioLange · January 28, 2021, 6:04am

const { getAccessTokenSilently } = useAuth0();

useEffect(() => {
    (async () => {
        try {
            const token = await getAccessTokenSilently({
                audience: 'https://<AUTH0_API_AUDIENCE>',
                scope: 'read:items'
            });
            const response = await fetch('<AMAZON_API_ENDPOINT>', {
                headers: {
                    Authorization: `Bearer ${token}`
                }
            });
            console.log(await response.json());
        } catch (e) {
            console.error(e)
        }
    })();
}, [getAccessTokenSilently])

^^^^ Here is the code that the flow is getting stuck at (copied from GitHub - auth0/auth0-react: Auth0 SDK for React Single Page Applications (SPA) at Getting Started > Call an API)

SageFioLange · January 28, 2021, 6:05am

Error: Consent required
at new OAuthError (auth0-react.esm.js?ae4e:142)
at eval (auth0-react.esm.js?ae4e:160)
at eval (auth0-react.esm.js?ae4e:311)
at step (auth0-react.esm.js?ae4e:87)
at Object.eval [as throw] (auth0-react.esm.js?ae4e:68)
at rejected (auth0-react.esm.js?ae4e:59)

^^^^ Here is the error I receive in my browser console (sorry that these are coming as replies, I wish there was a way to edit posts/comments here )

SageFioLange · January 28, 2021, 7:29pm

Figured it out by using Permissions tab and assigning permission to User. Feel like a ■■■■■■■ but hopefully this helps someone else.

konrad.sopala · January 29, 2021, 9:28am

Perfect! Glad you have figured it out and thanks for sharing with the rest of community!

system · February 13, 2021, 9:28am

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to login in a SPA and obtain a token to call into an API? Help api , auth0js , spa	2	5585	March 2, 2018
Generating Access Token Help jwt , auth0 , api	5	3285	September 16, 2022
React/JavaScript Authentication: Basic Access Control Developer Hub javascript , spa , authentication , react	4	2627	February 23, 2022
Code samples available for utilizing auth0-spa-js? Help auth0 , login	2	2029	February 23, 2022
SPA + API issue with JWT token Help apis , application	9	357	June 5, 2024

How to authorize a SPA to access an API?

Related Topics