createOrder - 403 Forbideen response

Response:

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Request:


  mutation createOrder(
    $address1: String
    $address2: String
    $carrier: String
    $city: String
    $company: String
    $country: String
    $countryCode: String
    $customerAccountId: String
    $email: String
    $firstName: String
    $fulfillmentStatus: String
    $lastName: String
    $lineItems: [CreateLineItemInput]
    $method: String
    $orderDate: ISODateTime
    $orderNumber: String
    $phone: String
    $requiredShipDate: ISODateTime
    $shippingPrice: String!
    $shopName: String
    $state: String
    $stateCode: String
    $subTotal: String
    $title: String!
    $totalDiscounts: String
    $totalPrice: String
    $totalTax: String
    $zip: String
  ) {
    order_create(
      data: {
        customer_account_id: $customerAccountId
        order_number: $orderNumber
        shop_name: $shopName
        fulfillment_status: $fulfillmentStatus
        order_date: $orderDate
        total_tax: $totalTax
        subtotal: $subTotal
        total_discounts: $totalDiscounts
        total_price: $totalPrice
        shipping_lines: { title: $title, price: $shippingPrice, carrier: $carrier, method: $method }
        shipping_address: {
          first_name: $firstName
          last_name: $lastName
          company: $company
          address1: $address1
          address2: $address2
          city: $city
          state: $state
          state_code: $stateCode
          zip: $zip
          country: $country
          country_code: $countryCode
          email: $email
          phone: $phone
        }
        billing_address: {
          first_name: $firstName
          last_name: $lastName
          company: $company
          address1: $address1
          address2: $address2
          city: $city
          state: $state
          state_code: $stateCode
          zip: $zip
          country: $country
          country_code: $countryCode
          email: $email
          phone: $phone
        }
        line_items: $lineItems
        required_ship_date: $requiredShipDate
      }
    ) {
      request_id
      complexity
      order {
        id
        legacy_id
        order_number
        shop_name
        fulfillment_status
        order_date
        total_tax
        subtotal
        total_discounts
        total_price
        custom_invoice_url
        account_id
        email
        profile
        packing_note
        required_ship_date
        shipping_address {
          first_name
          last_name
          company
          address1
          address2
          city
          state
          state_code
          zip
          country
          country_code
          email
          phone
        }
        line_items {
          edges {
            node {
              id
              sku
              product_id
              quantity
              product_name
              fulfillment_status
              quantity_pending_fulfillment
              quantity_allocated
              backorder_quantity
              eligible_for_return
              customs_value
              warehouse_id
              locked_to_warehouse_id
            }
          }
        }
      }
    }
  }

Trying to generate an order recently we started getting this type of 403 errors as a response.
This only happens in some cases, not 100% of requests.

Today we present 179* errors of this type.

Hey @Andres.A,

Thanks for reaching out!

Would you mind providing an example with a timestamp and the exact call made? Feel free to private message me since the information in the call is likely sensitive.

Best,
RayanP

How can i send a PM?.
I dont see that option. :thinking:
@sh-agent

Hey @Andres.A,

Continuing this one per the support ticket that was made.

Best,
RayanP

Hi @sh-agent

This thread is a possible duplicate of another, yet unresolved one from last year: Seemingly random 403 Forbidden

The last message in that thread is escalation to the engineering team. I appreciate that taking this conversation private will prevent exposing potentially sensitive information, yet it will also obscure a possible resolution from others suffering the same issue.

Could I ask that once you reach a resolution privately, you post a publicly shareable summary in this thread or update on the status of the older one?

1 Like

Hey @Gergely,

Absolutely, I’ll post an update here when this gets resolved, I appreciate the feedback.
In the meantime let me know if there’s anything I can do to assist.

Best,
RayanP

1 Like