Random 401 response with "invalid_header: unable to find appropriate key" when calling python flask API

chu · April 13, 2022, 7:10am

Hi,
I have been struggling a lot with Auth0 with random 401 response when calling either auth0 apis or my own python flask API. This has been lasting for a long time.

My environment:
Nodejs 16, Nextjs 12.1.4, Nextjs-auth0 1.7.0
Authenticate using SSR Nextjs paradigm
Docker, Azure web app service
Cloudflare as my DNS provider

Auth0 webapp settinig:
Regular Web Application

In the same endpoint calls, the endpoint calls fail from time to time:

The response in python is:
invalid_header: unable to find appropriate key

The accesstoken sometimes does not have the right RSA key (kid missing).

This happens to almost all endpoints, including other examples provided by auth0 sdk example:
/api/auth/me
/api/auth/profile
The weird thing is that in my development deployment, this does not happen

Does anyone know what’s going on with this?

rueben.tiow · April 14, 2022, 12:41am

Hi @chu,

Welcome to the Auth0 Community!

I understand that you have encountered intermittent errors when authenticating against your APIs.

First, could you please decode the access token from the response using jwt.io to see if the access token has a valid signature?

And could you please clarify which Auth0 SDKs did you test that you found the same issue with almost all endpoints?

I would like to see if I can reproduce this issue.

Thank you.

chu · April 14, 2022, 12:44pm

Thanks for reply. Will come back shortly with data.

chu · April 19, 2022, 12:07am

Hi @rueben.tiow ,

The access tokens are identical for both failing and ok API calls and the signature is verified using jwt.io. auth0-python==3.13.0 is SDK used in Flask. It is happening in almost all endpoints from my side and I do not see a clear pattern when it shall happen.

rueben.tiow · April 21, 2022, 9:09pm

Hi @chu,

Thank you for your response.

In this case, could you please capture a HAR file of the authentication events, including the Invalid_header error and DM it to me?

I would like to investigate your observations further.

Thank you.

chu · June 7, 2022, 8:07am

By adding a proper scope, the problem disappeared even though I am not using the scope. Thanks for the help from @rueben.tiow

Topic		Replies	Views
Nextjs and flask app using auth0 - getting token errors Help management-api , device-credentials	1	1156	July 4, 2023
API test token works but user tokens fail Help jwt , auth0 , api	5	3216	June 25, 2021
Id_token valid but returns "Unable to parse authentication token." Help jwt	3	4196	January 14, 2022
Invalid claims from backend API in production but successful in development environment Help jwt , auth0 , api , claims , flask	5	3943	January 26, 2022
Why authorization header not included in request ? - Auth0 Help jwt , auth0 , api , login , python	6	26276	July 13, 2021

Random 401 response with "invalid_header: unable to find appropriate key" when calling python flask API

Related Topics