Issue with API, getting always 403

Seif1 · May 17, 2023, 8:42am

Hello I’m new with Seatable, we’re studying the possibility to switch from Airtable to Seatable in my company but so far I’m having some doubts because the API seams so complicated.
Like now I’m having an Admin account trying to list all the plugins
https://cloud.seatable.io/api/v2.1/admin/dtable-system-plugins/

I’m using an Account-Token to authenticate BUT I’m getting 403:
{
“detail”: “You do not have permission to perform this action.”
}
And it’s the same for all the ACCOUNT OPERATIONS: SYSTEM ADMIN endpoints.

So does any faced the same issue ? or Any Seatable admins can help me , because honestly I’m finding Seatable more complicated than Airtable:/

Thanks

rdb · May 17, 2023, 10:07am

Please post here the API call to obtain the token and the call to query the installed plugins. (Remove any secrets from the calls.) More info will elicit more specific responses.

A few general thoughts:

If you haven’t read the section on authentication in the API documentation, please do: Authentication
As you haven’t specified the system you use (SeaTable Cloud vs. self-hosted), it is unclear if you need to take account of this configuration change:

image771×157 8.59 KB
I concur, SeaTable’s three tokens are a bit confusing at first. But: SeaTable’s API is also much more powerful than Airtables.

Seif1 · May 17, 2023, 12:52pm

Hello I’m using the SeaTable Cloud.
Like I create a custom plugin on my local and test it than I packaged it and I want to use it on the SeaTable cloud but I’m not sure I need to have the On-Premises version to do that.

PS: Im using directly the web API Reference “https://api.seatable.io/reference/introduction”
And alos I used the Postman:

Get: https://cloud.seatable.io/api/v2.1/admin/dtable-system-plugins/
with Auth type = “Bearer Token” and I added my Access-Token

rdb · May 17, 2023, 1:16pm

Ok, you are using SeaTable Cloud. Helpful.

Does your call look like this:

curl --request GET \
     --url https://cloud.seatable.io/api/v2.1/admin/dtable-system-plugins/ \
     --header 'accept: application/json' \
     --header 'authorization: Bearer 1234567890123456789012345678901234567890'

or


curl --request GET \
     --url https://cloud.seatable.io/api/v2.1/admin/dtable-system-plugins/ \
     --header 'accept: application/json' \
     --header 'authorization: Token 1234567890123456789012345678901234567890'

rdb · May 17, 2023, 1:25pm

Sorry, I wasn’t paying attention.

So you are using SeaTable Cloud. You do not have system admin rights. Hence the system admin endpoints are not available.

In other words, the error message “You do not have permission to perform this action.” is spot on.

Seif1 · May 17, 2023, 1:52pm

Thank for your answer, we’re switching to the On-Premises so we can test all the functionalities of SeaTable in order to make the decision of migrating from Airtable
Thanks again for herlp

rdb · May 17, 2023, 2:03pm

Pleasure!

I confirm: When running your own instance, you can use a system admin user’s account token to query the system admin endpoints.

system · May 19, 2023, 2:04pm

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.