Symptom
Unable to create session via Video REST API or Video API Server SDKs, and an HTTP 403 (Forbidden) response was received, with an error message that reads, "Blank Token & Session ID error," or "-1 issued time cannot be greater than current time."
Applies To
- Video API
- JASON Web Tokens (JWT)
- Video REST API
- Video API Server SDKs
Resolution
Begin by verifying that your credential details are correct using the Credential Validator. If your credentials are valid, continue with further steps.
Calling the OpenTok create session API requires adding a POST header field (X-OPENTOK-AUTH) with the value being a JSON web token (JWT) for authentication.
For more information about Create Session, see our Opentok Environment Developer Guides or Vonage Video API Unified Environment.
One of the claims of the JWT is iat, which is the issued at claim that identifies the time at which the JWT was issued. If the iat value is greater than current time, the JWT and the create session request would fail, resulting in an authentication error (403). Check the generation of the iat value on the machine doing the session creation.
There are different possible causes that may result in an invalid time value, such as:
- Error in machine's system time.
- Using the wrong time zone.
- Error in server code generating iat value.
However, if no changes were made to application code recently, then it is likely that the error was due to incorrect system time, which could have drifted over time or had been changed by some other process.
If the machine's system time has become inaccurate, you can consider syncing it with an accurate internet time server, for example, the NIST internet time server. For Mac or Linux OS, you can do this with the following command:
sudo ntpdate time.nist.gov
For more detail about Windows Time service tools and settings, see microsoft article.
Related to:
Articles in this section
- How to use Completion handler for Exception Handling
- Firefox Pre-call test not supported
- Error Creating Session Using Vonage Video API .NET SDK
- Unable to Create Session Even Though API Key and Secret Are Valid
- HTTP 415 Error When Archiving Video Session
- Troubleshooting Invalid JWT When Creating a Video Session using REST API
- Camara Still in Use after Session Disconnect on Android
- Token Shows as Invalid
- HTTP 400 Error When Archiving Video Session
- 1541 Timed out while attempting to publish Error