'Unauthorized request' and 'Can't determine Application ID from request' error when trying to contact endpoint using dojo/request/xhr

Modified on: Wed, 22 Jan, 2020 at 6:59 PM

APS APS:2.x

Symptoms

I've created a service with custom operation. When i'm trying to contact it from my custom UI using dojo/request/xhr I get this error:

RequestError: Unable to load /aps/2/resources/81dc8c62-368f-4880-a740-a96bc9c7f14d/getList status: 403 Unauthorized request

In poa.debug.log:

Oct  2 12:16:33 sandbox : DBG [SYSTEM 1:1777:b0376b70 SAAS]: [APSC] Can't determine Application ID from request
Oct  2 12:16:33 sandbox : ERR [SYSTEM 1:1777:b0376b70 SAAS]: [APSC] REST Error: GET /aps/2//resources/81dc8c62-368f-4880-a740-a96bc9c7f14d/getList code=403: Unauthorized request

Cause

Every request to controller should specify custom headers, including APS-Token and application instance ID. If either of these headers is missing in request headers APS controller will refuse to process such request.

dojo/request/xhr is a method from dojo library that does not provide any additional headers.

Resolution

Use aps/xhr instead.

It sends a request using XMLHttpRequest with the given URL and options. It is the same as dojo/request/xhr except it adds custom APS headers to HTTP requests and sets the 'handleAs' parameter to 'JSON'.

Internal content

Did you find it helpful? Yes No