My selected method is Programmatic via Python. I’ve got all the dependencies installed, and have updated the supplied script with my audience tag and auth domain. Unfortunately, I’m getting a 403 and, “missing required cf authorization token.”
In addition to the setup instructions, are there other steps I need to take verify the token?
I apologize if this is a ridiculous question or have provided incomplete information. It’s not intentional. I’m trying to learn. Thank you for your patience.
For starters, I am neither overly familiar with Access nor with Python, so I am a bit in uncharted waters here however from your description and the code listed under the linked page I would get the impression the 403 you were referring to is the else branch in the first if of the wrapper function. Would that be about right?
Did you hardcode those variables or are you reading them in as ENV variables? If you’re reading the in, can you echo them to make sure they are correct?
I hardcoded the variables, copy/pasting my auth domain and audience tag.
Before I waste more of anyone’s time, I’ll explain what I’ve done. I’m a beginner. Sometimes, I think I understand how something works, but my assumptions are wrong, and it actually works in a different way.
I’m attempting verification from my local environment. The word verification suggested to me that I’d just be making sure the key pair is signing correctly. I also believed this because I read the article on how Access works. I didn’t see any of the steps hitting the actual app server, or my my case a web server, until authentication was complete at step 9. To me, that meant, I wouldn’t need to run the script from my web server. I could be completely mistaken.
In my local environment, I’m using python3. I satisfied all the dependencies and executed the script.
After seeing this, please feel free to let me know I’m going about this the wrong way. Thanks for your time!
In that case I’d verify the authentication token is actually sent. If you dont send the authentication credentials/token you will naturally fail the authentication