Writing a python authentication plugin but always getting 403 forbidden

wavydavid1 · July 17, 2023, 3:40pm

Hello. I am trying to make a custom authentication plugin in python. It should ultimately see if there is an authentication code cached and if not get it by logging in and grabbing the key. Right now I am just trying to run the tyk provided example with my API. The end of my logs are below. I am not sure why it is checking 6499c5b9972e4100010bb389 as I did not provide it. I am just using the example middleware given a static authentication code. Even if I provide the right key in the authentication field I get 403 forbidden. Has anyone found a way around this or knows the proper way to run a custom authentication lugin? Thanks!

Checking: 6499c5b9972e4100010bb389
MIDDLEWARE: CoProcess plugin
MESSAGE: Checking: 6499c5b9972e4100010bb389
no cached entry found, returning 7 days
MIDDLEWARE: CoProcess plugin
MESSAGE: no cached entry found, returning 7 days
Finished

MIDDLEWARE: CoProcess plugin
ELAPSED: 4.106146ms
MESSAGE: Finished
Forbidden

Olu · July 19, 2023, 11:20am

Hi @wavydavid1 and welcome to the community.

What logs are these? Are they the gateway logs?

You debug your code with more verbose log messages that are emitted when the gateway is set to debug mode via the log_level field.

If you can’t find out where the issue is then maybe can share the python plugin code for review.