Error in the graphql response for the tasklist api of the selfmanaged cluster

Hi All,

Need your help in executing the graphql api in the altair client, i have tried multiple options but still getting the below error in the response, i am getting success response with the same request from Camunda SaaS offering.
am i missing any additional configuration to be done in the Altair client.

Response:
{ “message”: “the provided claims are invalid” }

Below is my request:

URL: https:// iam-dev.mashreqdev .com /tasklist/graphql

query tasks ($query: TaskQuery!) {
tasks (query: $query) {
id
name
processName
creationTime
completionTime
assignee
variables{
id
name
value
}
}
}

Variables:
{
“query”: {
“state”: “CREATED”
}
}

Below is the url used to generate token:

(The token generated is given in the Header as “Authorization”.)

curl --location --request POST ‘https://iam-dev.mashreqdev.com/auth/realms/camunda-platform/protocol/openid-connect/token’
–header ‘Content-Type: application/x-www-form-urlencoded’
–data-urlencode ‘client_id=tasklist’ \
–data-urlencode ‘client_secret=cjFplijGze’ \
–data-urlencode ‘grant_type=client_credentials’ \
–data-urlencode ‘audience=tasklist.camunda.io’

Make sure the “client_id” and “audience” matches what’s in Camunda Platform Identity.

same error

Any solution ? I face the same issue

In my case, I had to assign read and write permissions to the client in Identity:

grafik766×578 15.5 KB

Perfect, thx.

I have the same error when calling any REST API on tasks. I reviewed the application access and it has read/write access to tasks.
Anyone faced this issue?

Hi @HebaEmara, welcome to the forums. Can you start a new topic with your question, and include the error message, how you’re configuring your API call(s), and how you have the client configured in Identity?