HttpClient unauthorized (401)

[frutuopa]

Hello

I use this code to send SMS messages.
I have to obtain a token beforehand, which I do without any problems... When I try to send the message I always get an authorization error...
I simulated it with Postman and it works fine.

Can you help?

Thanks

Private Async Sub btnEnviaSMS_Click(sender As Object, e As EventArgs) Handles btnEnviaSMS.Click

        Dim lsql As String = ""
        Dim aspas As String = Chr(34)
        Dim ghttpClient As New HttpClient
        Dim stoken As String = "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJ1cm46XC9cL21wcm8tbTJtLWF1dGhvcml6YXRpb24iLCJleHAiOjE3Mzc0NTE1NjYsImlhdCI6MTczNzQ0Nzk2NiwiY2xpZW50X2lkIjoiODQzNjgyZDMtMmExMy00NzU2LThiYjEtOTFjNjI3YjcxY2FiIiwianRpIjoiMDhkNGNlMGYtOGUyMC00NjU4LWI2MDYtZDcxZmJjODdlZDc2In0.d5Zvgnn_noIbtFIzJ_VNtR6AuxEYNP0kcVHJQkoaR9GpscMUI3DmB7_PDC0c8ene2ssg7Uzmjlx8WRLw6slRQQ"
        Dim srecipient = <json>
            [{"to":"+351967605175"},{"to":"+351967605174"}]
        </json>

        Dim requestContent As New StringContent(JsonConvert.SerializeObject(New With {
                .recipients = srecipient,
                .sender = "Funfrap",
                .body = "OLA",
                .title = "TITULO",
                .dlr = "NONE",
                .ttl = "FOUR_HOURS",
                .smartEncode = "True",
                .smartText = "True"
            }), Encoding.UTF8, "application/json")

        Dim requestMessage As New HttpRequestMessage(HttpMethod.Post, "https://api-mpro.apg.nos.pt/communication/v1/sms") With {
            .Content = requestContent
        }
        requestMessage.Headers.Add("Authorization", stoken)
        requestMessage.Headers.Add("X-ApiKey", "843682d3-2a13-4756-8bb1-91c627b71cab")

        Dim response As HttpResponseMessage = Await ghttpClient.SendAsync(requestMessage)


        Dim responseString = response.Content.ReadAsStringAsync()
    End Sub

ERROR :


?response
{StatusCode: 401, ReasonPhrase: 'Unauthorized', Version: 1.1, Content: System.Net.Http.StreamContent, Headers:
{
Connection: keep-alive
Date: Tue, 21 Jan 2025 08:27:17 GMT
Content-Length: 151
Content-Type: application/json
}}
Content: {System.Net.Http.StreamContent}
Headers: {Connection: keep-alive
Date: Tue, 21 Jan 2025 08:27:17 GMT
}
IsSuccessStatusCode: False
ReasonPhrase: "Unauthorized"
RequestMessage: {Method: POST, RequestUri: 'https://api-mpro.apg.nos.pt/communication/v1/sms', Version: 1.1, Content: System.Net.Http.StringContent, Headers:
{
Authorization: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJ1cm46XC9cL21wcm8tbTJtLWF1dGhvcml6YXRpb24iLCJleHAiOjE3Mzc0NTE1NjYsImlhdCI6MTczNzQ0Nzk2NiwiY2xpZW50X2lkIjoiODQzNjgyZDMtMmExMy00NzU2LThiYjEtOTFjNjI3YjcxY2FiIiwianRpIjoiMDhkNGNlMGYtOGUyMC00NjU4LWI2MDYtZDcxZmJjODdlZDc2In0.d5Zvgnn_noIbtFIzJ_VNtR6AuxEYNP0kcVHJQkoaR9GpscMUI3DmB7_PDC0c8ene2ssg7Uzmjlx8WRLw6slRQQ
X-ApiKey: 843682d3-2a13-4756-8bb1-91c627b71cab
Content-Type: application/json; charset=utf-8
Content-Length: 226
}}
StatusCode: Unauthorized {401}
Version: {1.1}

 

[jdelano]

With Postman there is a feature that generates code Generate code snippets from API requests | Postman Docs, perhaps that can give you an insight to why theirs works and yours isn't.

 

[frutuopa]

I've already tried...it has the same authorization problem
Thanks

 

[benshaws]

Not being the best person to answer your question I thought if I suggested an idea it may help you reach a resolution.

Dim stoken As String = From what I can tell from your code and the resultant ERROR:, this code line is where the authorization fails.

Should stoken be a string? Could it be a <json>?

Dim stoken = <json>"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJ1cm46XC9cL21wcm8tbTJtLWF1dGhvcml6YXRpb24iLCJleHAiOjE3Mzc0NTE1NjYsImlhdCI6MTczNzQ0Nzk2NiwiY2xpZW50X2lkIjoiODQzNjgyZDMtMmExMy00NzU2LThiYjEtOTFjNjI3YjcxY2FiIiwianRpIjoiMDhkNGNlMGYtOGUyMC00NjU4LWI2MDYtZDcxZmJjODdlZDc2In0.d5Zvgnn_noIbtFIzJ_VNtR6AuxEYNP0kcVHJQkoaR9GpscMUI3DmB7_PDC0c8ene2ssg7Uzmjlx8WRLw6slRQQ"</json>

 

[frutuopa]

Hello

Thanks to all of you...
The solution below works for me

Private Async Sub Button15_Click_1(sender As Object, e As EventArgs) Handles Button15.Click

' Dim client = New HttpClient()
'ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12
Dim request = New HttpRequestMessage(HttpMethod.Post, "https://api-mpro.apg.nos.pt/communication/v1/sms")
request.Headers.Add("Authorization", "Bearer " & cnfNosToken.access_token)
request.Headers.Add("X-ApiKey", "843682d3-2a13-4756-8bb1-91c627b71cab")
Dim content = New StringContent("{" & vbCrLf & " ""recipients"": [" & vbCrLf & " {" & vbCrLf & " ""to"": ""+351967605175""" & vbCrLf & " }," & vbCrLf & " {" & vbCrLf & " ""to"": ""+351967605175""" & vbCrLf & " }" & vbCrLf & " ]," & vbCrLf & " ""sender"": ""Funfrap""," & vbCrLf & " ""body"": ""OLA""," & vbCrLf & " ""title"": ""TITULO""," & vbCrLf & " ""dlr"": ""NONE""," & vbCrLf & " ""ttl"": ""FOUR_HOURS""," & vbCrLf & " ""smartEncode"": ""True""," & vbCrLf & " ""smartText"": ""True""" & vbCrLf & "}", Nothing, "application/json")
request.Content = content
Dim response = Await ghttpClient.SendAsync(request)
Try
response.EnsureSuccessStatusCode()
Console.WriteLine(Await response.Content.ReadAsStringAsync())
Catch ex As HttpRequestException
MsgBox("erro " & response.StatusCode)
End Try


End Sub

 

[jdelano]

Thanks for coming back and adding your solution.

 

[Rythorian]

The HttpClient loses it's headers on redirections.

So make sure, that you use the correct API address.
EXAMPLE: If your API doesn't allow insecure connections but you use "http://your-api-address.xy/" instead of "https://your-api-address.xy/" it will return a redirection and your client loses the headers.
So what's actually happening is that "https:/url" is redirected to "https:/url/" and during this action your header is being lost. Try switching off automatic redirections in Postman as mentioned here: stackoverflow.com/questions/56763018/… then followed the shown response - where I found out that there is "/" at the end!

 

[JohnH]

@Rythorian OP posted the solution in #5, which was changing a header value.