Unauthorized error when calling /oauth/token from rule to get access token

kelsey1 · January 13, 2020, 7:43am

I am getting an Unauthorized error with HTTP status 401 when calling https://my-tenant.au.auth0.com/oauth/token from a rule. I have checked that I am using the correct tenant name in URL, client_id and client_secret and get a successful response when I call the endpoint using curl locally.

Is there anything wrong with this request syntax, otherwise what else could be going wrong??

Code in rule:

var request = require("request");

var options_for_token_request = { method: 'POST',
url: "https://my-tenant.au.auth0.com/oauth/token",
body: '{"client_id":" ","client_secret":" ","audience":"urn:auth0-authz-api","grant_type":"client_credentials"}',
contentType: 'application/json' };

request(options_for_token_request, function (error, response, body) {
  if (error) { throw new Error(error); } 
  console.log(response.statusCode);
  console.log(body);
});

Console log:
5:47:00 PM:
401
{“error”:“access_denied”,“error_description”:“Unauthorized”}

dan.woda · January 13, 2020, 11:06pm

Hi @kelsey1

Have you authorized the respective application in APIs > auth0-authorization-extension-api > Machine to Machine Applications?

Let me know.

Thanks,
Dan

kelsey1 · January 14, 2020, 12:41am

Hi Dan,

Yep, I have the relevant application authorized in APIs > auth0-authorization-extension-api > Machine to Machine Applications.

I find it weird that I don’t have any issue getting a token when calling the endpoint with the same credentials using curl locally.

kelsey1 · January 14, 2020, 1:54am

Hey Dan,

So I’ve found the issue, turns out “contentType” is not a valid option. I’m now setting the content-type in the header option as in the example.

var options = { method: ‘POST’,
url: ‘https://my-tenant.au.auth0.com/oauth/token’,
headers: { ‘content-type’: ‘application/json’ },
body: ‘{“client_id”:“”,“client_secret”:“”,“audience”:“urn:auth0-authz-api”,“grant_type”:“client_credentials”}’ };

Thanks for your help anyways, had a feeling it was something wrong with my code.

dan.woda · January 14, 2020, 5:35pm

Glad you figured it out!

dan.woda · January 29, 2020, 5:35pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Unauthorized 'Invalid token' response when trying to call Authorization API Help authorization-extens , api-authorization , unauthorized	6	24745	January 7, 2019
Another Unauthorized New User Help unauthorized	9	3581	December 8, 2020
Getting unauthorized response when trying to get my token Help auth0 , api , login , error	7	3921	April 8, 2021
Get Management API Token in actions (SPA) Help management-api	2	2607	June 28, 2021
401 Unauthorized Help	9	11832	July 28, 2020

Unauthorized error when calling /oauth/token from rule to get access token

Related Topics