app-timefiller does not work with personium-core v1.7.18b

personium / app-timefiller

A sample Personium App that uses app-personium-calendar data and recommend activities for users' free time based on their personal preference.

1 stars 3 forks source link

app-timefiller does not work with personium-core v1.7.18b #40

Closed tochi-y closed 4 years ago

tochi-y commented 4 years ago

This error message is displayed in the screen.

http access

request POST https://tochi.test.example/__token Requestbody:

grant_type: refresh_token
refresh_token: RR~v9Jy3*************Eow
client_id: https://app-timefiller-wakaba.tochi.test.example/
client_secret: PEFz***************b24-

response Status Code: 401 Unauthorized Responsebody:

{
  "error_description": "[PR401-AN-0020] - Client mismatch for refresh token. [https://app-timefiller-wakaba.text.example/]",
  "error": "invalid_client"
}

shimono commented 4 years ago

This error is returned when switching applications upon refreshing tokens.

tochi-y commented 4 years ago

As well as personium/app-personium-calendar#155, I created a new environment with v1.7.19 and did a same test. Same issue is completely occurred.

Request

GET https://tochi.test.example/timefiller/ Authorization: Bearer AV~*****E5A

Response

Status Code: 403 Body:

{
  "code": "PR403-AU-0002",
  "message": {
    "lang": "en",
    "value": "Necessary privilege is lacking."
  }
}

@shimono Is it a personium-core bug?

tochi-y commented 4 years ago

Resolved in personium-core v1.7.20. But there is an another issue #41.