aschempp
commented
10 months ago Please explain exactly what you're doing. What does your request look like?
Closed M-Zoldak closed 10 months ago
aschempp
commented
10 months ago Please explain exactly what you're doing. What does your request look like?
M-Zoldak
commented
10 months ago example.com/contao-manager.phar.php/api/server/php-web with headers, including Authorization: Bearer "previously saved token", and some more.And at this point, for Tokens created before (I assume) contao-manager < ~1.8.0 this call works perfectly, and for calls with tokens received from contao-manager > 1.8.0, it returns 403 response.
aschempp
commented
10 months ago Are you sure you‘re saving the token? The token return URL has changed, there is no query parameter for the token, it is in the URL hash only!
M-Zoldak
commented
10 months ago Yes, I'm sure whole Token is saved - from hash, and not from parameter.
M-Zoldak
commented
10 months ago Ok, my big mistake.
I made a request to my own website instead of client website.
I can't read data from Contao manager API after retrieving token. API returns
Access denied - 403for any call.It's still working with tokens retrieved old way, saved in DB for other websites.