This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Privileges issue for REST API that returns keywords for a docID

ybxdde
Star Contributor
Star Contributor

‎10-26-2021 04:19 PM

I'm able to call this endpoint in our lower environment, but receive 403 Forbidden in production.  What would be the reason for this issue, the service account I use when obtaining the Bearer token is set up exactly the same in both environments.  Not sure where else to look.

 

http://*****/ApiServer/onbase/core/documents/332579984/keywords

 

403 Forbidden - No privileges to view keywords for document ID 332579984

Labels:
0 Kudos
10 REPLIES 10

AdamShaneHyland
Employee
Employee

‎10-27-2021 06:07 AM

Hi @Diane Estes ,

 

You mention a Service account.  Are you using an OnBase user account marked as a Service Account, or are you using a general OnBase user account?

 

Thanks.

0 Kudos

ybxdde
Star Contributor
Star Contributor
In response to AdamShaneHyland

‎10-27-2021 07:43 AM

Adam,

 

They are Onbase service level accounts (non AD user accounts)

 

Thanks, Diane

0 Kudos

AdamShaneHyland
Employee
Employee
In response to AdamShaneHyland

‎10-27-2021 07:58 AM

Hi @Diane Estes ,

 

To be clear, there are differences between an OnBase user account configured as a Service account and one that is configured as a standard account (any standard account can be mapped to AD).  It is not possible to login with the REST API using an OnBase user account configured as a Service account.  You'll encounter this error message ...

 

Hyland.Core.AuthenticationException: Unable to log on with user 'SERVICE' to data source 'observer'. Please check users service account status.

 

Authentication would fail, so I'm assuming that you are using a standard OnBase user account.

 

Since you are getting a 403 error, can you confirm if any of the Keyword Types associated with the Document Type are configured as HIDDEN or READONLY?  Also, can you confirm if the user account you are using to login has access to the "Access Restricted Keyword" User Group privilege?  If not, can you try granting the privilege?  Does that resolve the issue?

0 Kudos

ybxdde
Star Contributor
Star Contributor
In response to AdamShaneHyland

‎10-27-2021 01:32 PM

Yes some of the keywords are hidden.  The admin just checked and the user account I'm using has full rights.

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC