Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

REST Call for non-admin users is failing with 401

Go to solution
Charles Fredie
Tera Contributor

yesterday

Hi Everyone,

I have an Outbound REST Message with Authentication Type as OAuth 2.0. I am triggering the REST Call using a BR on update of certain fields. Now the REST Call returns 200 Status if a user with Admin role updates the fields.
But when a Non-Admin user updates the fields, the REST Call in BR still triggers but returns a 401 Status Code.
So far I tried adding the below ACLs as mentioned by ServiceNow in the below article but the problem remains still the same:
https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0783632

OAuth Profile has Grant Type as Resource Owner Password Credentials.

0 Helpfuls
  • 480 Views
1 ACCEPTED SOLUTION

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron

yesterday

@Charles Fredie 

that ACL config should help here.

ensure that API user has access to OAuth Profile as well and then run

💡 If my response helped, please mark it as correct and close the thread 🔒— this helps future readers find the solution faster! 🙏

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader

View solution in original post

10 REPLIES 10

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Charles Fredie

5 hours ago

@Charles Fredie 

please try if that fixes the issue.

any ways only READ access is given

💡 If my response helped, please mark it as correct and close the thread 🔒— this helps future readers find the solution faster! 🙏

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls

Go to solution
Charles Fredie
Tera Contributor
In response to Ankur Bawiskar

5 hours ago

Hi @Ankur Bawiskar 

I provided read access to the non-admins for Oauth Profile but I am still receiving 401 if I impersonate a non-admin and update a field to trigger the REST call.


0 Helpfuls

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Charles Fredie

5 hours ago

@Charles Fredie 

share your code which invokes the REST Message

see this

Outbound REST call with Oauth authentication fails with http 401 - Invalid Access Token 

💡 If my response helped, please mark it as correct and close the thread 🔒— this helps future readers find the solution faster! 🙏

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls

Go to solution
Charles Fredie
Tera Contributor
In response to Ankur Bawiskar

4 hours ago

@Ankur Bawiskar 
Below is the code which invokes REST Message

var poNumber = current.u_po_number.getValue();
var r = new sn_ws.RESTMessageV2("Alpha Outbound", "Send Details");
			r.setAuthenticationProfile("oauth2", gs.getProperty("asn.oauth.profile"));
			r.setStringParameterNoEscape('number', poNumber);

			r.setRequestBody(JSON.stringify(payload));
			var response = r.execute();
			var httpStatus = response.getStatusCode();
			var responseBody = response.getBody();
0 Helpfuls

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Charles Fredie

4 hours ago

@Charles Fredie 

not very sure then.

Did you try to create flow which Runs as -> System User and then consume the API endpoint?

💡 If my response helped, please mark it as correct and close the thread 🔒— this helps future readers find the solution faster! 🙏

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls