Hi,
Need a bit of assistance on the below error -
{
"responseStatus": {
"status": 400,
"code": "9123",
"severity": "ERROR",
"message": "Expected input credential was not present",
"info": ""
}
}
I have followed through the below blog to setup the two way SSL to test hello world API -
https://community.developer.visa.com/t5/Two-way-SSL-X-Pay-Token/How-to-run-the-Hello-World-API-with-...
But I keep getting 9123 error response even though all the certs and credentials were accurate from the VDP. Kindly provide assistance on the issue.
Below is the Postman Log
GET https://sandbox.api.visa.com/vdp/helloworld
400
137 ms
Warning: Unable to get local issuer certificate
GET /vdp/helloworld HTTP/1.1
Authorization: Basic RzJRNDZETDRPWFdTVkY3UlJSQlcyMUlYTFVFdnlhblcwVW9CdDAwWmZaWUJHMTVyRTpxanN4UDZOeTEzYjRXM0dTMFUx
User-Agent: PostmanRuntime/7.32.3
Accept: */*
Postman-Token: 52537496-a3e6-43b4-991e-ea3eeaab2fea
Host: sandbox.api.visa.com
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 14 Dec 2023 14:14:46 GMT
Content-Type: application/json
Content-Length: 130
X-SERVED-BY: -54d479d6-6
X-CORRELATION-ID: 1702563286_985_207514320_-54d479d6-6_VDP_WS
x-vdp-normalized-url: /vdp/helloworld
X-APP-STATUS: 400
x-vdp-authn-api-visa-id: HELLOWORLD
X-ERROR-ORIGIN: 9100
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubdomains
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Content-Security-Policy-Report-Only: default-src 'self' https://*.v.me https://*.visa.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.visa.com https://*.v.me;img-src 'self' https://*.v.me https://*.visa.com https://*.unica.com https://ad.doubleclick.net;style-src 'self' 'unsafe-inline' https://*.visa.com;object-src https://*.v.me https://*.visa.com data:;report-uri /logging/logCSPReport;
X-Content-Security-Policy-Report-Only: default-src 'self' https://*.v.me https://*.visa.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.visa.com https://*.v.me;img-src 'self' https://*.v.me https://*.visa.com https://*.unica.com https://ad.doubleclick.net;style-src 'self' 'unsafe-inline' https://*.visa.com;object-src https://*.v.me https://*.visa.com data:;report-uri /logging/logCSPReport;
X-WebKit-CSP-Report-Only: default-src 'self' https://*.v.me https://*.visa.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.visa.com https://*.v.me;img-src 'self' https://*.v.me https://*.visa.com https://*.unica.com https://ad.doubleclick.net;style-src 'self' 'unsafe-inline' https://*.visa.com;object-src https://*.v.me https://*.visa.com data:;report-uri /logging/logCSPReport;
X-SYMC-Transaction-UUID: 9fdebaa9134c3ca7-000000001318df33-00000000657b0dd6
Connection: keep-alive
{"responseStatus":{"status":400,"code":"9123","severity":"ERROR","message":"Expected input credential was not present","info":""}}
Hi @nab4nabeel,
It appears you're having a certificate related issue. Please make sure you've downloaded all the necessary certificates (private and public) and store it on your local machine. You'll need to add the certificates to the testing tool. Additionally, you'll need to create a client key store. Below are some guides for you to follow. Test again and share your result with us. You're free to use any testing tool you like but I've also included the VDC Playground tool guide for you, as well.
Visa Developer Center Playground
HI @API_Products ,
Thank you for your quick reply.
We have attempted the mentioned steps to set up the Two SSL. However, we are still receiving a 9123 error response. When connecting from Postman, should we place the common certs of Visa in a specific folder?
Kind Regards,
Nabeel
Hi @nab4nabeel,
Sorry for delayed reply. Please refer to this link on how to setup an API using Postman. Try again and share your result with us.
Hi @nab4nabeel,
Is the error fixed? If so, please let me know so I can take you off my contact list.
Hi @API_Products ,
Apologies, I couldn't get back to you sooner on this.
The error has not been resolved yet. Could you please help us understand what Visa receives as a request when we make the following call, so that we can determine what is missing from our request?
> GET /vdp/helloworld HTTP/1.1
> Host: sandbox.api.visa.com
> Authorization: Basic WDhTRVhQTkdZQUhCNVQzVUZKQVoyMXBUaWtZT2NxY0dXQXItdmxrNlA2V01CWGtzbzpqYjl6YlVqM3hQSkFxRjlWMzlIVWQ4YndVVTRPMw==
> User-Agent: curl/7.88.1
> Accept: */*
>
< HTTP/1.1 400
< Server: nginx
< Date: Fri, 19 Jan 2024 06:32:45 GMT
< Content-Type: application/json
< Content-Length: 130
< X-SERVED-BY: -54d479d6
< X-CORRELATION-ID: 1705645965_860_1272577269_-54d479d6_VDP_WS
< x-vdp-normalized-url: /vdp/helloworld
< X-APP-STATUS: 400
< x-vdp-authn-api-visa-id: HELLOWORLD
< X-ERROR-ORIGIN: 9100
< X-Frame-Options: SAMEORIGIN
< X-XSS-Protection: 0
< X-Content-Type-Options: nosniff
< Strict-Transport-Security: max-age=31536000;includeSubdomains
< Cache-Control: no-cache, no-store, must-revalidate
< Pragma: no-cache
< Expires: -1
< Content-Security-Policy-Report-Only: default-src 'self' https://*.v.me https://*.visa.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.visa.com https://*.v.me;img-src 'self' https://*.v.me https://*.visa.com https://*.unica.com https://ad.doubleclick.net;style-src 'self' 'unsafe-inline' https://*.visa.com;object-src https://*.v.me https://*.visa.com data:;report-uri /logging/logCSPReport;
< X-Content-Security-Policy-Report-Only: default-src 'self' https://*.v.me https://*.visa.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.visa.com https://*.v.me;img-src 'self' https://*.v.me https://*.visa.com https://*.unica.com https://ad.doubleclick.net;style-src 'self' 'unsafe-inline' https://*.visa.com;object-src https://*.v.me https://*.visa.com data:;report-uri /logging/logCSPReport;
< X-WebKit-CSP-Report-Only: default-src 'self' https://*.v.me https://*.visa.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.visa.com https://*.v.me;img-src 'self' https://*.v.me https://*.visa.com https://*.unica.com https://ad.doubleclick.net;style-src 'self' 'unsafe-inline' https://*.visa.com;object-src https://*.v.me https://*.visa.com data:;report-uri /logging/logCSPReport;
< X-SYMC-Transaction-UUID: 457f2c7b46fdb57d-0000000002c0be21-0000000065aa178d
< Connection: keep-alive
<
* Connection #0 to host ep.threatpulse.net left intact
{"responseStatus":{"status":400,"code":"9123","severity":"ERROR","message":"Expected input credential was not present","info":""}}test:/tmp/dl/certs$
Hi @nab4nabeel,
Please refer to the Visa Developer Error Codes for the cause and solution for the error by clicking here. I've also pasted the same information below.
HTTP STATUS | HTTP CODE | CAUSE/RESOLUTION |
---|---|---|
BAD REQUEST |
400 |
This error could be due to a variety of reasons. Check for the following:
Or
Or
|
Hi @nab4nabeel,
Please let us know if the error is solved and, if so, please click on the Accept As Solution button.
Hi @nab4nabeel,
Please follow these steps using this Postman Guide and tutorial video here. Try the test again and share your results with us.