no_session_token when using API

Loeihard

Hey Enhance people!
I'm new to using Enhance and am running into a weird issue. When using the API as a super admin I'm unable to access some data. The API returns:
{ "code": "no_session_token" }
Some endpoints work others don't
I am using the needed headers orgId and the bearer token generated from the control panel. What am I missing?

Let's stay in touch ✌🏻

xyzulu

Loeihard you need to be sending:

AUTH_HEADER="Authorization: Bearer $ACCESS_TOKEN"
CONTENT_TYPE="Content-Type: application/json"

.. if you are already doing this correctly, please share more details if you want help.

adil

Also, are you using v11 or v12 ?
Which Webserver is used on the ControlPanel server ? Like OpenLiteSpeed or Apache or ... ?

What endpoint is the one throwing that error ?

Nickske00

Like others are asking, what endpoint is giving this? You can also always look at enhance itself, because it uses the api itself. So looking what requests are made from the panel can help.

Adam

If you are sending the bearer token then you don't need a session cookie. Session cookies are only for interactive use - for example if you were creating a custom UI.

If you're using openapi-generator, there are a few endpoints which are missing the "security" section from the API spec. You therefore need to add the bearer token to the request manually as openapi-generator won't send it automatically. We will fix this in an upcoming release.