Server error by using oauth-state for OAuth authorize

APIR_Dativery · December 14, 2017, 8:13am

Hi, we have problem with OAuth2 specifically with oauth-state Prevent Attacks and Redirect Users with OAuth 2.0 State Parameters

If we call https://signin.infusionsoft.com/app/oauth/authorize with state object and press allow.
Then we get server error (500) from https://accounts.infusionsoft.com/app/oauth/processAuthorization

Unfortunately we need this information for next redirection in our app
Can you fix/add support for this feature?

request:
https://accounts.infusionsoft.com/app/oauth/authorize?client_id=vjbhmeuhseu672n739e9hymm&redirect_uri=https%3A%2F%2Fapp.dativery.com%2Fchannel-granted%2F&scope=full&response_type=code&state={"type"%3A"oauth2"%2C"operation"%3A"callback"%2C"channel_id"%3A"4fe6549e-e0ab-421f-a773-e4a8bb65bd46"%2C"organisation_id"%3A"c6aef405-4ffd-48e7-bb87-6ac055b6e613"}&approval_prompt=force&access_type=offline

bradb · December 14, 2017, 5:36pm

I have duplicated the issue and we are receiving an error from our OAuth provider Mashery. I will dig into today to see what the issue and get back to you.

bradb · January 4, 2018, 7:44pm

@APIR_Dativery Super sorry for not getting back to you one this. This has been fixed. Let me know if it is not working for you.

APIR_Dativery · January 5, 2018, 2:44pm

Thank you now it is working.

The_LowestRates.ca_T · January 16, 2018, 5:29pm

please help we are getting the same issue.

{“error”:“server_error”,“error_uri”:“xml-rpc - Keap Developer Portal error occurred”}

@bradb please help.

bradb · January 18, 2018, 8:33pm

What is the url you are using?

Winter_Valko · February 1, 2020, 4:12am

HI @bradb. I am getting the same issue today. Can you please help me handle this? Thanks

the error : error=server_error&error_uri=https%3A%2F%2Fdeveloper.infusionsoft.com%2Fdocs%2Fread%2FGetting_Started_With_OAuth2&error_description=An+error+occurred

OAuth URL :
https://accounts.infusionsoft.com/app/oauth/authorize?client_id=tqp9ay994m8dq9unbkjqm98j&redirect_uri=https%3A%2F%2Fdev.aevent.com%2F%23%2Finfusionsoftcallback&response_type=code&scope=full

James_Butler · February 25, 2020, 8:31pm

We are also receiving the same error as described in post #7 (Server error by using oauth-state for OAuth authorize - #7 by bradb)

Please advise. Thank you.

bradb · February 25, 2020, 9:15pm

We determined that @Winter_Valko was using a fragment in his redirect_uri which is not allowed per the OAuth 2.0 spec. We need to know the full url you are using to authorize to investigate anything.

James_Butler · February 25, 2020, 9:35pm

Thank you. Here is the URI I’m trying, which uses the App ID as the “client_id” (Using the API Key generates “You need to have at least one Account linked to your user in order to grant access” error):

https://signin.infusionsoft.com/app/oauth/authorize?client_id=f9e60426-a7c7-45c6-811e-beae5813d677&redirect_uri=https://portal.dentalgameplan.com/app/catch_infs_token&response_type=code&scope=code

bradb · February 25, 2020, 9:49pm

That client_id in the url provided is incorrect, The API Key is the correct one to use. The You need to have at least one Account linked to your user in order to grant access" error means you don’t have access to a Keap nor Infusionsoft application to connect to. You need to be invited to an application first.

James_Butler · February 25, 2020, 10:58pm

Thank you, Brad.

Topic		Replies	Views
Oauth2 Not working Max Classic api	2	1434	April 3, 2020
Infusionsoft API authorization API Q&A	7	1043	February 1, 2018
Can't oAuth. oAuth Broken API Q&A	2	834	March 19, 2018
Authorize API Return Error 500 API Q&A	2	1051	February 11, 2021
Sandbox API endpoint API Q&A	5	968	September 8, 2017

Server error by using oauth-state for OAuth authorize

Related topics