KB-1976 Calls to Appian WebAPI fails with 401 unauthorized in Postman

Maggie Deppe-Walker — Wed, 05 Jul 2023 05:01:08 GMT

Current Revision posted to Appian Knowledge Base by Maggie Deppe-Walker on 7/5/2023 5:01:08 AM

Symptoms

WebAPI calls to Appian via Postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from <IP ADDRESS> to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under Embedded Interfaces in the Admin Console.

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: postman, integration, authentication, webAPI

KB-1976 Calls to Appian WebAPI fails with 401 unauthorized in Postman

Parmida Borhani — Wed, 14 Aug 2019 05:24:08 GMT

Revision 8 posted to Appian Knowledge Base by Parmida Borhani on 8/14/2019 5:24:08 AM

Symptoms

WebAPI calls to Appian via Postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from <IP ADDRESS> to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under Embedded Interfaces in the Admin Console.

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: postman, integration, authentication, webAPI

KB-1971 Calls to Appian WebAPI fails with 401 unauthorized in Postman

Parmida Borhani — Wed, 14 Aug 2019 05:23:41 GMT

Revision 7 posted to Appian Knowledge Base by Parmida Borhani on 8/14/2019 5:23:41 AM

Symptoms

WebAPI calls to Appian via Postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from <IP ADDRESS> to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under Embedded Interfaces in the Admin Console.

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: postman, integration, authentication, webAPI

DRAFT KB-XXXX Calls to Appian WebAPI fails with 401 unauthorized in Postman

Zach Puderbach — Mon, 12 Aug 2019 13:04:19 GMT

Revision 6 posted to Appian Knowledge Base by Zach Puderbach on 8/12/2019 1:04:19 PM

Symptoms

WebAPI calls to Appian via Postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from <IP ADDRESS> to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under Embedded Interfaces in the Admin Console.

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: postman, integration, authentication, webAPI

DRAFT KB-XXXX Calls to Appian WebAPI fails with 401 unauthorized in Postman

Zach Puderbach — Fri, 09 Aug 2019 16:18:26 GMT

Revision 5 posted to Appian Knowledge Base by Zach Puderbach on 8/9/2019 4:18:26 PM

Symptoms

WebAPI calls to Appian via postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from 96.58.71.24 to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under Embedded Interfaces in the Admin Console.

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: authentication, webAPI

DRAFT KB-XXXX Calls to Appian WebAPI fails with 401 unauthorized in Postman

Zach Puderbach — Fri, 09 Aug 2019 15:34:21 GMT

Revision 4 posted to Appian Knowledge Base by Zach Puderbach on 8/9/2019 3:34:21 PM

Symptoms

WebAPI calls to Appian via postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from 96.58.71.24 to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under embedded interfaces in the Admin Console.

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: authentication, webAPI

DRAFT KB-XXXX Calls to Appian WebAPI fails with 401 unauthorized in Postman

Zach Puderbach — Fri, 09 Aug 2019 15:26:33 GMT

Revision 3 posted to Appian Knowledge Base by Zach Puderbach on 8/9/2019 3:26:33 PM

Symptoms

WebAPI calls to Appian via postman fail with HTTP 401 unauthorized, even if the WebAPI requires no authentication.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from 96.58.71.24 to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under embedded interfaces in the Admin Console

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: authentication, webAPI

DRAFT KB-XXXX Calls to Appian WebAPI fails with 401 unauthorized in Postman

Zach Puderbach — Fri, 09 Aug 2019 15:26:02 GMT

Revision 2 posted to Appian Knowledge Base by Zach Puderbach on 8/9/2019 3:26:02 PM

Symptoms

WebAPI calls to Appian via postman fail with HTTP 401 unauthorized, even if there is not authentication for the WebAPI.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from 96.58.71.24 to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian, which has not been added to the CORS list within Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under embedded interfaces in the Admin Console

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2019

Tags: authentication, webAPI

DRAFT KB-XXXX Calls to Appian WebAPI fails with 401 unauthorized in Postman

Zach Puderbach — Tue, 09 Jul 2019 13:43:18 GMT

Revision 1 posted to Appian Knowledge Base by Zach Puderbach on 7/9/2019 1:43:18 PM

Symptoms

WebAPI calls to Appian via postman fail with HTTP 401 unauthorized, even if there is not authentication for the WebAPI.

The following error also appears in the application server log:

ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from 96.58.71.24 to /webapi javax.servlet.ServletException: CORS origin denied fhbjgbiflinjbdggehcddcbncdddomop not on allowed list:[]

Cause

The domain fhbjgbiflinjbdggehcddcbncdddomop is used by Postman to access Appian.

Action

Add fhbjgbiflinjbdggehcddcbncdddomop to the CORS list under embedded interfaces in the Admin Console

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: July 2019

Tags: authentication, webAPI