Erro
API key scoped to a hosted feature service with allowAnonymousToQuery set to false yields no results when queried, while short lived OAuth2 token does.
| Número de ID do Erro | BUG-000169836 |
|---|---|
| Enviado | August 8, 2024 |
| Última Modificação | November 6, 2024 |
| Aplica-se à | ArcGIS Online |
| Versão encontrada | June 2024 |
| Sistema Operacional | Windows OS |
| Versão do Sistema Operacional | 11.0 64 bit |
| Status | As Designed |
Informações Adicionais
The current implementation of the API Authentication token is functioning as intended. This design choice has important implications for user privacy and system security. Token Content: The API Authentication token is designed to contain only the information necessary for accessing specific items or resources. It does not include user login information typically found in OAuth tokens. Anonymous Access: Due to the absence of user-specific information, requests made with these tokens are treated as coming from an anonymous account. Security Implications: The token's limited scope reduces potential security risks associated with token interception or misuse. Intended Functionality: This behavior is not a bug or oversight, but a deliberate design choice to balance functionality, privacy, and security.Solução Provisória
Access tokens have different privileges depending on the method used to obtain them: Tokens from API key authentication and App authentication have their privileges managed by the developer credentials used to obtain them. Tokens from user authentication have their privileges determined by the ArcGIS account of the signed-in user.Etapas para Reproduzir
ID do Erro: BUG-000169836
Software:
- ArcGIS Online
Seja notificado quando o status de um erro mudar
Descubra mais sobre este tema
Procurar por informações relacionadas
Encontre treinamento relacionado a este tópico
Explore idéias e forneça comentários
Obtenha ajuda de especialistas do ArcGIS
Baixe o Aplicativo de Suporte da Esri