itdoesnotwork
Reputation: 31
Auth0 - why insufficient scope and what to do with it?
I am trying to authnticate with Auth0 and get user data.
import json
import requests
payload = {
'grant_type': 'password',
'username': '********',
'password': '********',
'client_id': '********',
'connection': 'Username-Password-Authentication',
'scope': 'openid'
# 'scope': 'openid, read:clients, read:client_keys'
# 'scope': 'read:clients'
}
base = 'https://********.auth0.com'
url = base + '/oauth/ro'
response = requests.post(url, data=payload)
response = json.loads(response.content)
headers = {"Authorization": "bearer " + response["id_token"]}
response = requests.get(base + '/api/v2/clients/joebloggs', headers=headers).json()
print response
What I keep getting is
{u'errorCode': u'insufficient_scope', u'message': u'Insufficient scope, expected any of: read:clients,read:client_keys', u'error': u'Forbidden', u'statusCode': 403}
What exactly is wrong and what to do about it?
Upvotes: 3
Views: 5962
Answers (1)
Eugenio Pace
Reputation: 14212
You cannot use an id_token for the Auth0 API. You need a specific token for the API (v2) (and in your case you need a read:client scope). See here: https://auth0.com/docs/api/management/v2
Upvotes: 5
Related Questions
- What is the difference between __str__ and __repr__?
- What is the difference between @staticmethod and @classmethod in Python?
- What is the purpose of the `self` parameter? Why is it needed?
- What does ** (double star/asterisk) and * (star/asterisk) do for parameters?
- Random string generation with upper case letters and digits
- What is the meaning of single and double underscore before an object name?
- What is the difference between Python's list methods append and extend?
- What is a mixin and why is it useful?
- What is the difference between null=True and blank=True in Django?
- springboot APIs to use Auth0