IBM Verify

IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

How to debug intermittent 401 unauthorized response from OAuth 2.0 /token endpoint

  • 1.  How to debug intermittent 401 unauthorized response from OAuth 2.0 /token endpoint

    Posted Thu January 18, 2024 04:31 PM
    Edited by Andres Parada Fri January 19, 2024 04:38 PM

    Hello Guys,

    I am experiencing intermittent 401 unauthorized for POST requests received on /token endpoint. I could see following logs in request.log of my webseal instance.
    192.168.80.25 - unauthenticated 17/Jan/2024:17:46:48 +0100 "POST /mga/sps/oauth/oauth20/token HTTP/1.1" 401 189 "-" "-" --- logon.xxxxxx.com /mga --- 8907.

    We do send 400 bad request as response code incase if there is a wrong input(invalid auth_code or refresh_token) provided to /token endpoint during POST call. Since this is unprotected endpoint what causes 401 is not known as of now.

    Could you please help me in debugging this(Which log file with what log level can reveal this).

    ------------------------------
    Ramu Pedada
    ------------------------------



  • 2.  RE: How to debug intermittent 401 unauthorized response from OAuth 2.0 /token endpoint

    Posted Thu January 18, 2024 11:59 PM

    HI

    This can help:

    https://www.ibm.com/support/pages/collecting-data-isva-appliance-federation-issues

    Incase, its production then support logs need to be reviewed about the JVM to correlate any error around the same time and furthermore few code snippets could be put into Pre/Post Mapping rule to assess when and why it occurred.



    ------------------------------
    Tushar
    Tushar
    ------------------------------

    Original Message