AlexJ_Proc - Hi all! I’m embedding Spotter usin...
Hi all! I’m embedding Spotter using the SDKs React component and authenticating with JWT. I'm on the latest version of the SDK. The authentication flow is working in the sense that it’s successfully returning a token. The problem is the embedded spotter is throwing several errors. The interface works and returns results but it also throws a 401 even though the requests are using the token. Additionally clicking on any returned visuals throw an error with the message:
"Request type cannot be accessed in REPORT_BOOK_VIEW access level : UPDATE_ANSWER_PROPERTIES”.
My question is: when using JWT authentication with spotter is it enough to give the user access to the underlying worksheet that spotter is querying against or does it need access to other resources? Additionally is an object level access token enough or does a full access token needed?
Thank you in advance!3 Replies
It seems that since you are using object level access, it is blocken requests due to this. Can you use a full access token instead? Do you have any reservations around using the full access token?
I'd like to avoid using the full access token if possible in order to limit user permissions to the bare minimum.
I would suggest to use the full access token and limit user permissions by giving them access to only relevant worksheets/lb/answers through TS..