Request Unauhtorized

Dinesh_Aravindth_Man · November 12, 2024, 4:19pm

I have used default authorizer and claim_mappers for authorization using azure AD. Once I do a sso login, I’m getting request unauthorized on web-ui. I don’t see any errors in the server or web logs.

When I check the network tab, I can see once after login the redirect_url is set to api/v1/namespace.

When I try to access the default/workspace api from postman, I’m getting 200status. I have assigned default:write claims to myself.

Please let me know what I’m missing here.

brian · January 12, 2025, 9:19pm

I’m running into the same thing. I’ve got workers able to authorize, but I’ve locked myself out of the UI now. Were you able to fix this somehow?

brian · January 12, 2025, 10:02pm

I tracked down my issue. I was missing scopes for “temporal-system:*” (admin/read/write). After assigning those, this works properly for me!

Topic		Replies	Views
Exact configuration for authorization with Azure AD Server Deployment	10	268	January 20, 2025
HTTP 503 when UI tries to 'DescribeNamespace' Server Deployment general-impl , auth	2	951	September 12, 2023
Web UI SSO with Azure AD - not working Community Support web-ui , sso	6	1860	May 16, 2024
Namespace based authentication/filtering Community Support web-ui	5	1211	May 6, 2021
HTTP 503 when UI tries to do anything with grpc Server Deployment web-ui	2	328	January 28, 2025

Request Unauhtorized

Related topics