Restful API - License limitations?

[dan.kennedy]

I'm trying to pull some info from RestAPI but keep getting "Authorization has been denied for this request."

Would this be caused by a license limitation of any sort? I'm running this against a test VBO365 server i spun up and have tried it with an evaluation license and also an NFR but get the same "authorization denied" response no matter what i try!

I can get to the SwaggerUI and generate a token with the same credentials and it works fine, but it seems like I can't query any of the other operations for some reason?

[nielsengelen]

Looks like u requested a token and didn't authenticate with the token (in the Swagger UI you can do this on top of the screen). As a result, you get access denied since you aren't correctly authenticated. Requesting the token is not the same as the actual authentication process. This is also described in the user guide.

[dan.kennedy]

I didn't realise you need to click "explore" again after generating the token - Thanks!
(Still doesn't work from my bash script but it at least proves RestAPI is working OK on my test box)

[jmartinez191]

Hi,

I tried configured Configurations Audits notifications but in the swagger, response body apperar this:

{
"message": "Authorization has been denied for this request."
}

[Polina]

Hi Jonathan,

I moved your topic to the existing thread on a similar issue.
Please check the above posts.

[flavio.santos]

Hi dan.kennedy,

First, you need to call the Auth API, to get the authorization token (Ok, it seems that you know that):

POST: https://<your_vbo_server_ip>:4443/v5/Token

in the body, you should send the user and password for authentication (send it in raw / Text):

grant_type=password&username=your_user&password=your_pass

Executing that, you should receive something like:

Code: Select all

{
    "access_token": "AQAAANCMnd8BFdERjHoAwE_Cl-sBAAAAaRAn9waDe0iSxJcO1wHcdgAAAAACAAAAAAAQZgAAAAEAACAAAAD15akPneB-AmdZk80oqI71NRBO7XNT0Ox_IjxkOUlGfAAAAAAOgAAAAAIAACAAAADSOOJk4XhCsvCYjhkC-4X1_cmE2OV_kyT2q6sU6IuAb7AAAAA8Dx73ZOrk3TfjZo-WV2dolTsHZmbNqepNtPtg9ayMn__Lv0LWjmFlsgZ64_-D3i2oAmczx00dw1RW6LtL5MF9xacGiMIeC-ArrfgKFnarnJg28JkxvxTTV0ozCStoRbtMuUTSrxrv1OsiHSrIlHWYtn4SHS8i9YHf_O22_xAOrO4MwxCLeuY5he7OHRd4Y9FHxz1N8qjyOcmQCXe2hqw0obShSK0P2pGqsH8y3w5jNUAAAACUDpPhTZufd3c3LjethRKgNK03v8hxO-zozZC5DtgDwkeQU6mrnU5pT9cNynEOJyDi13Q_CdI7KB8rrnKwAd4p",
    "token_type": "bearer",
    "expires_in": 3599,
    "refresh_token": "AQAAANCMnd8BFdERjHoAwE_Cl-sBAAAAaRAn9waDe0iSxJcO1wHcdgAAAAACAAAAAAAQZgAAAAEAACAAAABVSN5thSv5ezByXsMOHUBgcr9Bd4uoZ1uw5QorphtIuQAAAAAOgAAAAAIAACAAAADd9-YqExkpIRE43GDNvMtT__xduVA-r4mlMeXwzwa_9dAAAABcLmmlKYJmZnWQnKyHXN4yVb194HEXaSPMllS-BHRIZ0ia9D_kaeump7-0Y3zRqsLtlIvmk0upvISFSzNBs68OuOIqqUXXsaiwCH7oguPQdSAysq1OZ21mLJc0JjdpUXkrFEKyFZnI0PxMBOg86eD8JakQldECailNLX5gzSo6kdSmaXshdjEMDQa1P5N8kYCbVUmMIUFegLvPJd6GZmT5bAQlSeybYh9hYrKsA-LCRj6iZmUTURrhoHMPTs4BWyH_OBYZ6MeUO1hJNl_YXY6lQAAAAAZja_eSFmMewssTSwn4-ItekN-II9xXPJvJBWEN0pOTcT-4k0dFa5jxnntp95DiWUp5JcAtXwAZrZdoqooQCFY",
    ".issued": "Wed, 01 Sep 2021 19:12:41 GMT",
    ".expires": "Wed, 01 Sep 2021 20:12:41 GMT"
}

This access_token, you must send it in the next API call you want.

like for instance, if you want to know the proxies you have available:

GET https://<your_vbo_ip>:4443/v5/Proxies

Header:
Authorization: Bearer AQAAANCMnd8BFdERjHoAwE_Cl-sBAAAAaRAn9waDe0iSxJcO1wHcdgAAAAACAAAAAAAQZgAAAAEAACAAAAD15akPneB-AmdZk80oqI71NRBO7XNT0Ox_IjxkOUlGfAAAAAAOgAAAAAIAACAAAADSOOJk4XhCsvCYjhkC-4X1_cmE2OV_kyT2q6sU6IuAb7AAAAA8Dx73ZOrk3TfjZo-WV2dolTsHZmbNqepNtPtg9ayMn__Lv0LWjmFlsgZ64_-D3i2oAmczx00dw1RW6LtL5MF9xacGiMIeC-ArrfgKFnarnJg28JkxvxTTV0ozCStoRbtMuUTSrxrv1OsiHSrIlHWYtn4SHS8i9YHf_O22_xAOrO4MwxCLeuY5he7OHRd4Y9FHxz1N8qjyOcmQCXe2hqw0obShSK0P2pGqsH8y3w5jNUAAAACUDpPhTZufd3c3LjethRKgNK03v8hxO-zozZC5DtgDwkeQU6mrnU5pT9cNynEOJyDi13Q_CdI7KB8rrnKwAd4p

This token will work for 1 hour only, after that you need to refresh it (see https://helpcenter.veeam.com/docs/vbo36 ... tml?ver=50).

If you prefer the curl commands:

Token:

Code: Select all

curl -X POST --header 'Content-Type: application/x-www-form-urlencoded' --header 'Accept: application/json' -d 'grant_type=password&username=your_user&password=your_pass' 'https://<your_vbo_ip>:4443/v5/token'

Proxy:

Code: Select all

curl -X GET --header 'Accept: application/json' --header 'Authorization: Bearer AQAAANCMnd8BFdERjHoAwE_Cl-sBAAAAaRAn9waDe0iSxJcO1wHcdgAAAAACAAAAAAAQZgAAAAEAACAAAAB_IaDRZkiMoaDYpE1J9GEHRoppKWxxXnFCAPjStJu0wQAAAAAOgAAAAAIAACAAAADqDY_U_GWuOOenupKaP_GafpUo5q0OqytfGy2c3tGULLAAAACIDGffI7gQ8MF6dL_RY6y4fjyX0QW5Vsor1l60rW60yYviKvizHYnSj-u7JdyaY6LmSWTigjt8c8SS9LW5DF2daCjjvRMSW4L5P8A0PYqsA3wSItQnCKt4CMI302Z4FULeKyCtb2PCWvAushhoMZ-iA34P7TqYOkLypLb_HTxl9i2z9931xW6oeJXVOrcQKe5jnxTY532F-XGa9z8cJjavZrOex58ApD6AbElL9obxdEAAAABm7_dZTO3uTLZG585_psfXE2WBcdE7wmWOzOGeuBkXO7v15IZARWR7MU5cegBtRGQ6CoUqXCplK6Ar9g6A1H3P' 'https://<your_vbo_IP>:4443/v5/Proxies'

[jmartinez191]

Hi,

I tried but V5/Organizations

Reponse body

{
"message": "Authorization has been denied for this request."
}

[nielsengelen]

That means you didn't request a token and authenticated against the API with that token. Please read up on the previous posts on this topic on how to utilize the API or have a look at this blog post.