c# code access unauthorized

Question

question

frederic.gaillard

21 ●0 ●2 ●2

c# code access unauthorized

Hello,

The JS code below allows me to create a new case:

But when I want to translate it into my C# application, I probably miss one step because I receive un unauthorized acces:

var environmentContent = "application/json";
            var currentDate = DateTimeOffset.UtcNow;
            var content = new StringContent(serializedElement);
            var contentLength = Uri.EscapeUriString(serializedElement).Length;

            var dataToSign = "(request-target): post /v2/cases\n" +
                                "host: rms-world-check-one-api-pilot.thomsonreuters.com\n" +
                                "date: " + currentDate + "\n" +
                                "content-type: " + environmentContent + "\n" +
                                "content-length: " + contentLength + "\n" +
                                content;

            var provider = new System.Security.Cryptography.HMACSHA256(Convert.FromBase64String(this.WorldCheckConfiguration.ApiSecret));
            var hash = provider.ComputeHash(Encoding.UTF8.GetBytes(dataToSign));
            var hmac = Convert.ToBase64String(hash);
            var authorisation = "Signature keyId=\"" + this.WorldCheckConfiguration.ApiKey + 
                            "\",algorithm=\"hmac-sha256\",headers=\"(request-target) host date content-type content-length\",signature=\"" + 
                            hmac + "\"";

            this.HttpClient.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue(environmentContent));
            this.HttpClient.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("basic", authorisation);
            this.HttpClient.DefaultRequestHeaders.Date = currentDate;          

            var url = this.WorldCheckConfiguration.ApiBaseUrl + "cases";
            var response = await this.HttpClient.PostAsync(url, content);

world-check world-check-one c#

1.png (32.6 KiB)

Feb 15, 2021 at 09:17 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

wasin.w Feb 23, 2021 at 06:40 AM

Hi @prabhjyot.mandla

Could you please help the client with the follow-up question below?

Answer 1 · 2021-02-16T14:24:00Z

frederic.gaillard

21 ●0 ●2 ●2

Don't you have the same example as JS for Postman, but in C#?

Feb 16, 2021 at 02:24 PM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Answer 2 · 2021-02-15T09:20:44Z

prabhjyot.mandla

548 ●1 ●1 ●1

@frederic.gaillard,

Can you please share the request and the response headers of the failed request?

Feb 15, 2021 at 09:20 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Answer 3 · 2021-02-15T09:31:07Z

frederic.gaillard

21 ●0 ●2 ●2

RequestUri: https://rms-world-check-one-api-pilot.thomsonreuters.com/v2/cases

RequestContent:

{

"groupId": "5nzbfkdmfcqy1fdst06q9j07c",

"entityType": "INDIVIDUAL",

"providerTypes": [

"WATCHLIST"

],

"name": "Frederic John Doe",

"nameTransposition": true,

"secondaryFields": []

}

And response (unauthorized):

3.png (26.2 KiB)

Feb 15, 2021 at 09:31 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Answer 4 · 2021-02-15T09:39:18Z

prabhjyot.mandla

548 ●1 ●1 ●1

@frederic.gaillard,

Could you please share the request and response details in the below format, so that we may investigate?

Request headers :

Date: Fri, 05 Feb 2021 03:44:19 GMT
Content-Type: application/json
Authorization: Signature keyId="XXXX-XXXXX-XXXXX",algorithm="hmac-sha256",headers="(request-target) host date content-type content-length",signature="RhiHURoE/NC+98L97Q+gZClcPqKRVJtAhB4dae/u+0w="
Content-Length: 524

Response headers :

Date: Wed, 10 Feb 2021 09:12:14 GMT

Feb 15, 2021 at 09:39 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Answer 5 · 2021-02-15T09:50:44Z

frederic.gaillard

21 ●0 ●2 ●2

Ok, sorry.

Request headers:

Date: {15.02.2021 09:45:24 +00:00}

Authorization: Signature keyId="61bf9346-7996-493b-851c-6ecd8c22bfa6",algorithm="hmac-sha256",headers="(request-target) host date content-type content-length",signature="y530hl3Z9bii+rLs2A9Z6OlBWlGvGad3s6V2D/BkmZQ="

Accept: {application/json }

Content-Length: 342

Response headers

Date: {15.02.2021 09:46:05 +00:00}

Feb 15, 2021 at 09:50 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

prabhjyot.mandla Feb 15, 2021 at 09:55 AM

Can you please adjust the system clock time? It appears that the clock time difference between the request and response is over 30 seconds. The allowed time difference is of 30 seconds and as per Network Time Protocol for the authentication. Once adjusted, please try again.

If it still fails after adjusting the clock, please share the latest request and the response headers.

Answer 6 · 2021-02-15T11:58:12Z

frederic.gaillard

21 ●0 ●2 ●2

Request headers:

Date: {15.02.2021 11:56:31 +00:00}

Authorization: Signature keyId="61bf9346-7996-493b-851c-6ecd8c22bfa6",algorithm="hmac-sha256",headers="(request-target) host date content-type content-length",signature="m/nfY4f0GjpJbitiEWxQwyGubU+c7VQ6Y9DLh8jIE44="

Accept: {application/json }

Content-Length: 342

Response headers

Date: {15.02.2021 11:56:32 +00:00}

Feb 15, 2021 at 11:58 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Answer 7 · 2021-02-16T13:34:39Z

prabhjyot.mandla

548 ●1 ●1 ●1

@frederic.gaillard,

Can you please share the dataToSign format which you are using to form the hmac?

Feb 16, 2021 at 01:34 PM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Answer 8 · 2021-02-16T14:02:08Z

frederic.gaillard

21 ●0 ●2 ●2

With the typed variables

1.png (36.8 KiB)

Feb 16, 2021 at 02:02 PM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Prabhjyot Feb 17, 2021 at 04:54 AM

@frederic.gaillard,

Can we have a quick call to investigate on the cause of 401 error? I will drop you an email separately. Please revert back to the email.

Answer 9 · 2021-02-23T07:38:09Z

prabhjyot.mandla

548 ●1 ●1 ●1

The issue has been resolved after sharing the sample code requests in C#.

Feb 23, 2021 at 07:38 AM

10 |1500

Attachments: Up to 2 attachments (including images) can be used with a maximum of 5.0 MiB each and 10.0 MiB total.

Q&A Forum

question

c# code access unauthorized

9 Answers

question

c# code access unauthorized

9 Answers

Related Questions