Details

      Description

      By forums:

       

      If Liferay allows access based on Authorization header, I get back correctly the StructuredContent. However if I don't pass in a Authorization header at all, Liferay does not allow access and the following is returned with response code 200 OK:

      {
      "data":

      { "structuredContent": null }

      ,
      "errors": [

      { "extensions": null, "message": "Exception while fetching data (/structuredContent) : java.lang.SecurityException: Access denied to com.liferay.journal.service.JournalArticleService#getLatestArticle", "path": null }

      ]
      }

      I am rather new to GraphQL with auth and in the frontend app I want to choose to send the user to a login or display something useful if user is not authorized. Are there no error codes in the response ?

        Attachments

          Activity

            People

            • Assignee:
              pablo.agulla Pablo Agulla
              Reporter:
              javier.gamarra Javier Gamarra
              Engineering Assignee:
              Javier Gamarra
              Recent user:
              Marta Elicegui
              Participants of an Issue:
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Packages

                Version Package
                7.1.X
                7.2.X
                7.3.0 CE GA1
                Master