Vault HTTP API is not working for token lookup but working via CLI

ravitejb November 18, 2020, 8:58pm #1

Hi All,

I’m running a 3 node vault cluster with version 1.4.3, when I create vault tokens I’m unable to lookup them using API, but I can look up them using the vault CLI.

Not working:

curl -kv -H “X-Vault-Token: $VAULT_TOKEN” -X POST https://127.0.0.1:8200/v1/auth/token/lookup

Error Message:

{"errors":["1 error occurred:\n\t* permission denied\n\n"]}

Working Scenario:

VAULT_TOKEN= xxxx /opt/vault/vault/vault token lookup

I’m not sure what is going on here, This used to work fine previously, Just now having these issues when I deployed a new cluster with 1.4.3 version

Thanks in Advance

Wolfsrudel November 18, 2020, 9:34pm #2

Dump question: is your variable set in the first command? In the second command you set the variable VAULT_TOKEN to use it with the cli. The curl command just points to the usage, not the setting of the variable.

ravitejb November 18, 2020, 9:54pm #3

Hi @Wolfsrudel
No No I’m directly using the token, while posting the question I just replaced the token with that variable