401 unauthorized in API response

Question

question

webforte asked Jun 23, '21 bryanvargas commented Nov 3, '23

401 unauthorized in API response

I have generated access_token by using API

https://sandbox.dev.clover.com/oauth/token?client_id=%7BappId%7D&client_secret=%7BAPP_SECRET%7D&code=%7BAUTHORIZATION_CODE%7D

but when i will use this access_token as authorization header of API

https://scl-sandbox.dev.clover.com/v1/customers, i am getting 401 unauthorized error

e-commerce api

3

10 |2000

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

essg commented · Nov 03 at 04:21 PM

I have been fiddling with this for over a week now... I have a merchant account with Clover... I logged in to the Merchant account and created an "API Token"

When I try to use that token to do a Get request from Postman to

https://api.clover.com/v3/merchants/{mymerchantid}

Using my Merchant ID I got from the merchant account.

Setting Authorization to "Bearer Token" and entering the "Private Token" I got..... I always get "401 Unauthorized".

I made sure to give full rights to this token... I checked all the boxes in permissions.

What am I missing here?

0 ·

essg essg commented · Nov 03 at 04:30 PM

Are you kidding me right now!?!? I found out my problem.... why the heck does the Clover Merchants listing have a column called "MID" that is NOT the Merchant ID?

So Stupid! This whole time I have been using the wrong Merchant ID.
Hopefully this helps someone else in the future... your Merchant ID is not just numbers... it's the code listed UNDER the Merchant name... not the numbers in the "MID" column.

0 ·

bryanvargas ♦♦ essg commented · Nov 03 at 06:04 PM

This is highlighted on what the MID is in our docs: https://docs.clover.com/docs/make-a-rest-api-call#make-a-sample-rest-api-call-and-retrieve-your-test-merchants-name

0 ·

Welcome to the
Clover Developer Community

Answer 1 · 2021-06-23T11:13:15Z

David Marginian Deactivated answered Jun 23, '21

Tokens need to have the correct permissions for the call you are making (in this case, Customer Read) - https://community.clover.com/articles/23744/resolving-401-unauthorized-responses-when-making-a.html.

10 |2000

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Answer 2 · 2021-06-23T11:29:38Z

webforte answered Jun 23, '21 David Marginian Deactivated commented Jun 23, '21

In the documentation https://docs.clover.com/docs/using-oauth-20, i am using step 2 token to get access_token via API (https://sandbox.dev.clover.com/oauth/token?client_id={appId}&client_secret={APP_SECRET}&code={AUTHORIZATION_CODE}), but getting 401 when using this fetched access_token as authorization header in API https://scl-sandbox.dev.clover.com/v1/customers

1

10 |2000

Attachments: Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

David Marginian ♦♦ commented · Jun 23, 2021 at 11:37 AM

I answered your question below:

Tokens need to have the correct permissions for the call you are making (in this case, Customer Read) - https://community.clover.com/articles/23744/resolving-401-unauthorized-responses-when-making-a.html.

0 ·

question