Hi, I am getting 403 for some operations with service user when consumig HTTP API e.g. thru Postman.
First of all: testing whole setup with swagger UI (using configured authorizationCode flow) works fine.
Since Swagger is not supporting client_credential flow I use Postman with service user, but get 403 trying to e.g. query existing asset. At the same time query asset is working fine.
Here my steps to reproduce:
-
Launched Openremote stack thru latest docker compose https://github.com/openremote/openremote/blob/master/docker-compose.yml
-
Openremote UI - created new service user, added all roles
- Postman - configured Oauth 2.0 Authotization with “Client Credentials” grant type
-
Postman - retreived new token - OK
-
Postman - executed POST “asset/query” for existing asset - OK
-
Postman - executed GET "asset/{asssedID} - ERROR received 403
Kind regards
Vladimir