B4J Question Problems with HttpJob in API-REST GET

Nator · Apr 11, 2023

Hello Community, it is possible that you can help me determine what could be the problem when consulting a REST API Get the code is the following

Get APi:

ApiRquest.Initialize("estaciones", Me)
    
    ApiRquest.Download("https://api.captahydro.com/devices")
    
    ApiRquest.GetRequest.SetHeader("APIKey", "4c823e19-e47a-yyyy-yyyy-xxxxxxxxxxxx")
    ApiRquest.GetRequest.SetHeader("OrganizationId", "29")
    ApiRquest.GetRequest.SetHeader("Content-Type","application/json")

the error returned is the following :

ResponseError. Reason: , Response: {"Message":"User is not authorized to access this resource with an explicit deny"}

when making the query in postman I have no problems and the records are returned without problems

I also tried download2 and it doesn't work either, I would really appreciate your valuable help

OliverA · Apr 11, 2023

The first thing I would try is to not set the content type.

Nator · Apr 11, 2023

OliverA said:
The first thing I would try is to not set the content type.

Thank you very much for your answers, I removed the content type but it still gives the same error

drgottjr · Apr 11, 2023

please post the api documentation (or a link to it)

EnriqueGonzalez · Apr 11, 2023

Nator said:
https://api.captahydro.com/devices

i wonder here.

it seems that postman is adding a / at the end of devices/

Nator · Apr 11, 2023

EnriqueGonzalez said:
i wonder here.

it seems that postman is adding a / at the end of devices/

I already added the / but it still returns the same error

Nator · Apr 11, 2023

drgottjr said:
please post the api documentation (or a link to it)

It is in Spanish, but basically it says this:

api manual:

API connection
The API is hosted at the following link:
APIURL = https://api.captahydro.com
To connect, in EACH request you must send the credentials that are the identifier of the
organization plus the API Key. Both must be sent within the header of the query, in the following
Format:
APIKey:{API_KEY_GENERATED}
OrganizationId:{ORGANIZATION_ID}
API Features
In the provided link of the API, the following queries can be made:
devices: Request type GET
device{deviceId}: Request type GET
device{deivceId}/data: Request type GET
/devices
GET type request:
Gets the organization's devices and those that were shared with the organization.
Response format: If the response is wrong, it returns an error. In case of being
successful, it returns in JSON format, an array with the data of each device. This contains
always:
id : device identifier
name: name of the device (in amaru) And depending on the type of device, it returns the
last value measured by your sensors plus the time of the sensor measurement (in the format of
unix timestamp in milliseconds).

EnriqueGonzalez · Apr 11, 2023

Nator said:
ApiRquest.GetRequest.SetHeader

Use the inbuilt content-type for getrequest.

Andrew (Digitwell) · Apr 11, 2023

Is it possible to see the full Postman api call which is successful.

can you click on the code button to the right of the main window.

Nator · Apr 11, 2023

EnriqueGonzalez said:
Use the inbuilt content-type for getrequest.

I have already tried with several content-types but it gives the same error

Nator · Apr 11, 2023

Andrew (Digitwell) said:
Is it possible to see the full Postman api call which is successful.

can you click on the code button to the right of the main window.

View attachment 141135

thanks but I don't have the full postman

Nator · Apr 11, 2023

Nator said:
Hello Community, it is possible that you can help me determine what could be the problem when consulting a REST API Get the code is the following

Get APi:

ApiRquest.Initialize("estaciones", Me) ApiRquest.Download("https://api.captahydro.com/devices") ApiRquest.GetRequest.SetHeader("APIKey", "4c823e19-e47a-yyyy-yyyy-xxxxxxxxxxxx") ApiRquest.GetRequest.SetHeader("OrganizationId", "29") ApiRquest.GetRequest.SetHeader("Content-Type","application/json")

the error returned is the following :

ResponseError. Reason: , Response: {"Message":"User is not authorized to access this resource with an explicit deny"}

when making the query in postman I have no problems and the records are returned without problems

View attachment 141131

I also tried download2 and it doesn't work either, I would really appreciate your valuable help

I think I figured out that I should send it as an array array(
'APIKey: 4c823e19-e47a-493f-8837-ade4efea9dfc',
'OrganizationId: 29'), but I don't know how to add this array to the head?

drgottjr · Apr 11, 2023

can confirm that it does work in postman. gotta eat now.

OliverA · Apr 11, 2023

You can try the request against https://httpbin.org/anything from both postman and B4J and see if you can spot any differences. Just don't use your real api key. Also make sure you are using the correct Api key. If you are copying/pasting the key, make sure you're not accidentally including "hidden" characters

drgottjr · Apr 12, 2023

his key is valid. the error is a 403 which means authentication is correct, but there is
an authorization issue. he can get in the front door, but not to a higher story. the error
reported is typical of amazon aws, and you can see references to amazon aws in
postman's response. i wish he would post the full documentation. i'm thinking there is
something missing in what he's told us.
i also tried using an okhttp3 client directly (essentially what okhttputils2 does) in the
very unlikely event okhttputils2 does something the server doesn't like, but the error was
the same.

drgottjr · Apr 12, 2023

it can be done with a browser and ajax. i get the same answer as with postman. chrome doesn't allow cors error, so i had to use (god forbid) ie. browser tacks on additional headers. maybe these are what server wants. i'm going to apply them to okhttputils2 request to see if that makes a difference. heading for breakfast now.

Nator · Apr 12, 2023

OliverA said:
You can try the request against https://httpbin.org/anything from both postman and B4J and see if you can spot any differences. Just don't use your real api key. Also make sure you are using the correct Api key. If you are copying/pasting the key, make sure you're not accidentally including "hidden" characters

Thank you very much for the information, I did the tests with postman and b4j and both are almost identical, the only difference is the Postman-Token

code head:

{
  "args": {},
  "data": "",
  "files": {},
  "form": {},
  "headers": {
    "Accept": "*/*",
    "Accept-Encoding": "gzip, deflate, br",
    "Apikey": "4c823e19-e47a-493f-3455-zxzxzxzzxzx",
    "Host": "httpbin.org",
    "Organizationid": "29",
    "User-Agent": "okhttp/4.9.0",
    "X-Amzn-Trace-Id": "Root=1-6436d8a7-7ea2af8736ce84475c3b6380"
  },
  "json": null,
  "method": "GET",
  "origin": "190.45.149.154",
  "url": "https://httpbin.org/anything"
}

{
    "args": {},
    "data": "",
    "files": {},
    "form": {},
    "headers": {
        "Accept": "*/*",
        "Accept-Encoding": "gzip, deflate, br",
        "Apikey": "4c823e19-e47a-493f-8837-zxzxzxzzxzx",
        "Host": "httpbin.org",
        "Organizationid": "29",
        "Postman-Token": "c6607704-68d0-4cb8-94fd-37ade38feaad",
        "User-Agent": "PostmanRuntime/7.32.2",
        "X-Amzn-Trace-Id": "Root=1-6436d903-7e265df92db563c504c90d03"
    },
    "json": null,
    "method": "GET",
    "origin": "190.45.149.154",
    "url": "https://httpbin.org/anything"
}

Nator · Apr 12, 2023

drgottjr said:
it can be done with a browser and ajax. i get the same answer as with postman. chrome doesn't allow cors error, so i had to use (god forbid) ie. browser tacks on additional headers. maybe these are what server wants. i'm going to apply them to okhttputils2 request to see if that makes a difference. heading for breakfast now.

Thank you very much, I tried with https://httpbin.org/anything and you can see the results below the head are almost the same with the exception of Postman-Token

OliverA · Apr 12, 2023

Nator said:
4c823e19-e47a-493f-3455-zxzxzxzzxzx

Nator said:
4c823e19-e47a-493f-8837-zxzxzxzzxzx

Unless you, for some reason, are changing the 3455 from the B4J app to 8837 in Postman, the displayed portion of the API keys do not match, therefore you may not be using the same key for B4J as for Postman. Please make sure you're actually using the same API keys (right now it looks like you are not). Alternative, you could copy the B4J key (if they differ) into Postman and check the result(s)

drgottjr · Apr 12, 2023

yeah, 3455 is wrong. i can run a shell in b4j and get the output using 8837

B4J Question Problems with HttpJob in API-REST GET

Member

Expert

Member

Expert

Well-Known Member

Member

Member

Well-Known Member

Well-Known Member

Member

Member

Member

Expert

Expert

Expert

Expert

Attachments

Member

Member

Expert

Expert

Attachments

Similar Threads