Hi Team,
Recently came across an issue in Motilal where the customer was using Admin access key to create opportunity, however was getting access denied message.
JSON:
{“LeadDetails”:[{“Attribute”:”Phone”,”Value”:”+91-9082927298″},{“Attribute”:”FirstName”,”Value”:”Ritesh Singh”},{“Attribute”:”EmailAddress”,”Value”:“riteshsingh7890.rs@gmail.com“},{“Attribute”:”SearchBy”,”Value”:”Phone”}],”Opportunity”:{“OpportunityEventCode”:12000,”OpportunityNote”:”CREATE OPPORTUNITY”,”UpdateEmptyFields”:false,”DoNotPostDuplicateActivity”:false,”DoNotChangeOwner”:true,”Fields”:[{“SchemaName”:”mx_Custom_3″,”Value”:”Online”,”Fields”:null},{“SchemaName”:”mx_Custom_12″,”Value”:””,”Fields”:[{“SchemaName”:”mx_CustomObject_4″,”Value”:”Android_Investor”,”Fields”:null}]},{“SchemaName”:”mx_Custom_42″,”Value”:”Mumbai”,”Fields”:null},{“SchemaName”:”mx_Custom_41″,”Value”:”Maharashtra”,”Fields”:null},{“SchemaName”:”mx_Custom_10″,”Value”:”96efc6ac-9c01-4984-b5c3-466c7185cdcc”,”Fields”:null},{“SchemaName”:”mx_Custom_35″,”Value”:””,”Fields”:[{“SchemaName”:”mx_CustomObject_9″,”Value”:”ONLKNCHPDA”,”Fields”:null},{“SchemaName”:”mx_CustomObject_10″,”Value”:”31660″,”Fields”:null},{“SchemaName”:”mx_CustomObject_11″,”Value”:”ONLKNCHPDA”,”Fields”:null},{“SchemaName”:”mx_CustomObject_6″,”Value”:”20053139″,”Fields”:null}]},
Response: <HTML><HEAD> <TITLE>Access Denied</TITLE> </HEAD><BODY> <H1>Access Denied</H1> You don’t have permission to access
Note: The issue was due to .rs keyword used in email address, .rs is a linux command and our firewall block those commands for security reasons.
In order to resolve this, there are two ways to mitigate this.
1. Whitelist the keyword from Infosec team ( Contact – Manikanta Gupta from Infosec team and he will do it)
2. Ask the customer to remove .rs from the JSON body.
I hope this helps.
Best,
Kiran
