Did anyone try securing RESTful API with OAuth token by configuring HTTP URL Aliases for the API ? When I tried to do it, I’m getting the following error message:
403 Forbidden
error=insufficient_scope
error_description=[ISS.0010.8046] Integration Server rejected the request to access this resource. The access token's scope is insufficient to access the resource.
As well, the above error message was expected to be in application/json format, however., it is coming back as a text/html. The content type of application/json has been set in the actual API service in the setResponse service.
I had the same error as well. Make sure that Folders and Services in the Defined Scope was the issue. You need to make sure the URL resource is specified within it. For example, if the rest endpoint defined is “http://:/restv2/MyPaper” you need to add MyPaper within the Folders and Services of the Defined Scope.