Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Getting 403 Forbidden error while sending GET request using postman

rpsg35
rpsg35 February 21, 2020

Hi all,

Sending GET request to /rest/api/2/project/{project-id} but keep getting 403 forbidden error with the following message                  

Basic Authentication Failure - Reason : AUTHENTICATION_DENIED

 

However the url in browser works and renders the response in proper JSON format.

 

Kindly Help.

Regards

 

 

 

Answer
Watch
Like Be the first to like this
7706 views

2 answers

0 votes
brimar wells
brimar wells November 9, 2020

This error indicates that the server has determined that you are not allowed access to the thing you've requested, either on purpose or due to a misconfiguration . It's probably because the site owner has limited access to it and you don't have permission to view it. The vast majority of the time, there's not much you can do to fix things on your (*client) end. There are three common causes for 403 Forbidden error (server side) . Here they are listed from most likely to least likely:

  • An empty website directory
  • No index page
  • Incorrect settings in the .htaccess file
  • Permission / Ownership error

If authentication credentials were provided in the request, the server considers them insufficient to grant access. The client SHOULD NOT automatically repeat the request with the same credentials. The client MAY repeat the request with new or different credentials. However, a request might be forbidden for reasons unrelated to the credentials.

Reply
0 votes
sukkeong
sukkeong
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 23, 2020

Check the username/passsword used. Perhaps there was a typo.

Additionally, the user used for performing the REST call may not have the correct permissions to the project.

View More Comments
rpsg35
rpsg35 February 24, 2020

Posting the api link in the browser is showing the result succesful in json format. So my user has permissions, but when i request the url from postman or python at the same endpoint , i will get denied as told in the message above. 

Like Rob Fender likes this
sukkeong
sukkeong
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 27, 2020

External applications will need credentials to be provided unless the project is public access not needing any login. So, you need to set your credential into your app or script. Otherwise, the server will reply with a forbidden access.

https://httpstatuses.com/403

 

Web clients keep your session alive through cookies so you do not need to repeatedly provide your credentials.

Like
Rob Fender
Rob Fender December 9, 2022

so what's the use of the API Token you can create for your account?

 

I can access the GET /wiki/rest/api/content/{id} without any issues from Postman or from pasting the endpoint URL in the browser use the `Authentication: Basic <myToken>` header.

 

But making the same request from a react app hosted on localhost fails with HTTP 403.

 

Why?

Like
sukkeong
sukkeong
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
December 11, 2022

@Rob Fender Did you provide the token when performing the request in the app? Unfortunately, I am not familiar how react performs REST calls.

Also, your REST URL is 'wiki'; is this related to confluence, which could be posted in the confluence community as well to get wider reach and help

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events