-
-
Notifications
You must be signed in to change notification settings - Fork 62
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Authentication error with zone DNS API token #44
Comments
By now I've switched to a wildcard certificate, thus I don't need specific DNS entries (and this image) anymore. Still it would be interesting what the issue could be here. |
Yeah I'm getting the same error myself even after generating a token with full permissions. Either the documentation is bad or something is broken for now.. |
Same issue here upon launching the service... no clue on how to debug unfortunately :-( |
OK, figured it out. Please note the comment Leave Blank for Scoped API behind the CF_EMAIL environment variable. This is important! You need to remove the CF_EMAIL environment variable when using a domain specific API token! The long explanation: According to Cloudflare documentation here one of the common issues with API tokens is using the wrong authentication.
According to the documentation of the Python wrapper for the Cloudflare v4 API, there are multiple ways to make a call:
As we are using an API token, we need to use the 1st option of the authenticated call and omit the e-mail address. |
Good catch, now it's working. Thanks! |
For minimal permissions I have created an API token locked down to zone DNS edits using the "Edit zone DNS" template:
When launching this service I get an
Authentication error
:Am I missing other permissions?
The text was updated successfully, but these errors were encountered: