API Xibo CMS 4.0.6 - Access token has been revoked

Erin · January 30, 2024, 4:03pm

Hi !

After a long break of about 6 months, I’m back on my custom xibo installation. Here is some config informations :

Host OS : Debian11
Xibo CMS version tested : 4.0.6, 3.3.6 and 3.1.1
php version : 8.3

I can get an access_token via Postman, but then I get the following error when making further requests :

{
    "error": "access_denied",
    "error_description": "The resource owner or authorization server denied the request.",
    "hint": "Access token has been revoked",
    "message": "The resource owner or authorization server denied the request."
}

I’m well aware that the problems associated with custom installations are difficult for you to diagnose, but perhaps we can find a solution together.

Regards,
Erin

Erin · February 8, 2024, 1:42pm

Update : I’ve added some logging in {xibo_root_directory}/lib/OAuth/AccessTokenRepository.php, specially in “isAccessTokenRevoked” function.

It seems that the command $cache = $this->pool->getItem('C_' . $tokenId) returns an empty value ($cache->isMiss() returning true).

Could it be a cache management problem? I tried to find the cache storage location in order to check the rights, but as I’m not a specialist in this field, I can’t find anything.

Best Regards,
Erin