search

amzn / selling-partner-api-models

This repository contains OpenAPI models for developers to use when developing software to call Selling Partner APIs.
Apache License 2.0
612 stars 739 forks source link

Access to requested resource is denied #2160

Closed Abdo99ab closed 1 year ago

Abdo99ab commented 2 years ago

We have an unsolved issue that's going about a month ago, with SP API services, we have registered to developer account successfully, followed the steps in SP API Documentation properly here: https://github.com/amzn/selling-partner-api-docs/blob/main/guides/en-US/developer-guide/SellingPartnerApiDeveloperGuide.md

And created our app to access Vendor data, however we are facing a problem in connecting to the service, the authentication works fine and we get the access token using refresh token, however when we use the access token in the endpoint it always give: Access to requested resource is denied

We have tried some of the suggestions here in the issues but nothing worked. Our IAM user and role are properly created as instructed in the documentation

You'll find in the attached everything concerning requests and their response requests.zip The request ID: cfdc97af-c9ed-48e6-b297-b9dde653a3ec The timestamp: Thu, 06 Jan 2022 14:00:07 GMT The reply time: 613ms The error type: AccessDeniedException

We'd like to solve this issue in the nearly possible time

AlexioDanje commented 2 years ago

I am having the same issue, Invalid Signature. "message": "The request signature we calculated does not match the signature you provided. Check your AWS Secret Access Key and signing method. Consult the service documentation for details. The Canonical String for this request should have been 'POST /shipping/v1/shipments

coder771 commented 2 years ago

@Abdo99ab @AlexioDanje did you find the reason for this issue?

Abdo99ab commented 2 years ago

@coder771 For my case I did solve it. I had a problem because I was using the access key and secret key from AWS directly when I first created the user. I solved that by using the sts policy and from there I get AccessKey, SecretKey and SessionToken and use all these three to make the signature of Amazon.

coder771 commented 2 years ago

@Abdo99ab thanks for getting back. Do we need to check below marketplaces in developer profile and get approval from Amazon to make these calls work, or do they work without any approval image

Abdo99ab commented 2 years ago

@coder771 in my case, we didn't have a list of marketplaces listed in use cases and we didn't even select the direct to consumer delivery because we don't need it, I used this api for vendor, so if you're in seller I don't think I can help you.

coder771 commented 2 years ago

@Abdo99ab no worries

github-actions[bot] commented 2 years ago

This is a very old issue that is probably not getting as much attention as it deserves. We encourage you to check if this is still an issue after the latest release and if you find that this is still a problem, please feel free to open a new issue and make a reference to this one.

github-actions[bot] commented 1 year ago

closed for inactivity