Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

Getting 403 Forbidden while trying to delete confluence groups via rest api

Eva Kailing November 18, 2021

Hello,

I am trying to delete a bunch of confluence groups via Postman. I am using the Extender for Confluence with a post method and the following url: 

  • {CONFLUENCE_URL}/rest/extender/1.0/group/removeGroups

I've got the admin rights to do so and I confirmed it in the basic authentication in postman.

But I always get the answer 403 Forbidden, XSRF check failed.

Does anyone have an idea how to fix this?

Thank's for your help!

1 answer

1 accepted

0 votes
Answer accepted
Kishan Sharma
Community Champion
November 18, 2021

Hi @Eva Kailing Welcome to the Atlassian Community!

To call protected APIs from external systems you can add the X-Atlassian-Token header to each request, setting the value to no-check. Adding this header to a request bypasses the server-side XSRF check and allows the request to be fulfilled.

example -
$ curl -u admin:admin -X POST -i "https://xxxx.atlassian.net/example/api/action?username=testUser" -H "X-Atlassian-Token: no-check"

Let me know if that helps.

Eva Kailing November 19, 2021

Hi @Kishan Sharma

It worked!!

Thanks a lot :)

Like Kishan Sharma likes this
Kishan Sharma
Community Champion
November 19, 2021

Good to know that it worked for you @Eva Kailing :) If you have found my answer useful, please mark it as accepted, so that it will help other members having similar issue.

Like Eva Kailing likes this

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events