Skip to main content
S
SS_106980593-Newcomer
3-Newcomer
June 25, 2025
Question

403 Response status

  • June 25, 2025
  • 2 replies
  • 3747 views
I am using windchill 13.0.2.0 mpmlink windchill 13.0.2.0 REST services and Datecode with CPS N/A

I am Trying to call /Windchill/trustedAuth/servlet/odata/v7/MfgProcMgmt/CheckOutOperations suing rest api but giving error 403 I am able to checkout operation using postman but not in rest
passing auth token as well as CSRF with userid
triied with /Windchill/oauth/servlet/odata/v7/MfgProcMgmt/CheckOutOperations still the same issue

2 replies

Catalina
CatalinaCommunity Manager
Community Moderator
June 25, 2025

Hi @SS_10698059 

 

Thank you for your question! 

 

Iā€™d like to recommend to bring more details and context to your initial inquiry. For example:

  • How are you generating and passing the CSRF token in your REST call? Are you including it in both the headers and cookies as required?
  • Are you using the same user credentials in your REST call as in Postman, and does that user have the correct access rights for the operation?
  • Is trusted authentication fully configured and enabled in your Windchill 13.0.2.0 environment, including server-side settings?

Please add screenshot(s) to better understand what you are trying to do in your process. 

 

Please refer to this guideline to make your questions more likely to receive a quick and useful answer. 

This will increase your chances to receive meaningful help from other Community members. 

 

Here's what a good question for Windchill looks like. 

 

Thank you for your participation and please let me know if you need further assistance! 

 

Best regards,

Catalina | PTC Community Moderator
S
SS_106980593-NewcomerAuthor
3-Newcomer
June 25, 2025

Thanks for your response 
so  we have onr own   custom rest api service , we need to call OOTB windchill rest api (checkout,update and checkin) from our custom rest service , we are generating authtoken and csrf token with same userID .
my main purpose is to reduce roundtrip time to perform update operation (checkout , update  then check-in)  at one place.

 

postman i am getting response when i m trying with  oauth in url where passing same token and csrf which i am passing to the rest api 
bellow error getting : 

"HttpClientErrorException: Status Code: 403 FORBIDDEN, Response Body: <html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Windchill Error</title>
</head>

<body>

<tr valign="top">
<th align="right" scope="row">Request URI: </th>
<td>/Windchill/trustedAuth/servlet/odata/v7/MfgProcMgmt/CheckOutOperations</td>
<!-- General purpose Windchill error page, /wtcore/error.jsp -->
<h1>Windchill Error</h1>
<p style="font-size: large">
Contact your administrator for assistance.
Information for their reference follows.

<th align="right" scope="row">Message: </th>
<td>wt.licenseusage.licensing.LicensingException: Access is denied. You are not a registered Windchill user.</td>

avillanueva
23-Emerald I
avillanueva23-Emerald I
23-Emerald I
June 25, 2025

For the userID you are using to connect, does the user exist in Windchill? Its reporting back that you are not listed as a user. Make sure that userID is in the Windchill LDAP and has a valid license assigned to it.

avillanueva
23-Emerald I
avillanueva23-Emerald I
23-Emerald I
June 25, 2025

I noticed you are using trustedAuth. Is the IP or host you are connecting from listed in the wt.properties as being a valid trusted host?

https://www.ptc.com/en/support/article/CS182327?source=search

Note, there are plenty of warnings about this configuration being deprecated but I have yet to see a replacement. 

 

Terms & ConditionsCookie settingsAccessibility statement