Opened 7 years ago
#2729 new defect
Scope / authentication issue Micropub plugin
| Reported by: |
|
Owned by: | |
|---|---|---|---|
| Priority: | normal | Severity: | normal |
| Plugin: | not-listed | Keywords: | |
| Cc: |
Description
I have tried to create a new post with both https://micropublish.net/new and https://quill.p3k.io/new but they seem to fail.
Both services could authenticate just fine.
Quill says:
Your endpoint did not return a Location header.
See Creating a Micropub Endpoint for more information.
HTTP/1.1 403 Forbidden
Date: Mon, 30 Jul 2018 06:53:34 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://test-wp.robertvanbregt.nl/wp-json/indieauth/1.0/token>; rel="token_endpoint", <https://test-wp.robertvanbregt.nl/wp/?micropub=endpoint>; rel="micropub", <https://test-wp.robertvanbregt.nl/wp-json/webmention/1.0/endpoint>; rel="webmention", <https://test-wp.robertvanbregt.nl/wp-json/webmention/1.0/endpoint>; rel="http://webmention.org/"
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent
Upgrade: h2c
Connection: Upgrade
Transfer-Encoding: chunked
Content-Type: application/json
{"error":"insufficient_scope","error_description":"scope insufficient to create posts"}