Linkedin OAuth pictureUrl leading to a 500 error

About

Asked 4/1, 2018 at 3:40 Answered 17/1, 2018 at 15:43

Until this morning, for the last 2 years I experienced no issues with the Linkedin Oauth system I have implemented. I can verify that all the data is still coming through, but suddenly a very strange issue has come up with the pictureUrl parameter of the returned data. It no longer leads to an image, and instead leads to a page which looks like this:

I can't figure out what has gone wrong, any advice would be greatly appreciated. All other data is coming through just fine.

Sextuple answered 4/1, 2018 at 3:40 Comment(7)

Getting the same issue too. Running API api.linkedin.com/v1/people/~/picture-urls::(original) which returns picture-url. Picture-URL also returning HTTP 500 error – Brightman 4/1, 2018 at 15:5

+1 - also seeing this issue on our app. Feels like something's falling over on the LinkedIn side, but they don't have a status page as far as I can tell to confirm. – Excrete 4/1, 2018 at 17:31

Sounds good guys, thanks for confirming. Pretty surprising that I haven't seen a lot more people talking about this, I'm sure there are thousands of platforms which rely on this functionality. I haven't been able to find a way to alert Linkedin directly about this issue, or request support. I guess we wait? – Sextuple 4/1, 2018 at 19:33

We've been seeing it since about 6pm GMT on the 2nd Jan. It was initially intermittent but now seems constant. – Bronchiectasis 4/1, 2018 at 20:29

We are not seeing this error any more (since ~ 11pm GMT, 4th Jan). No changes on our part. – Bronchiectasis 5/1, 2018 at 9:9

Issue appears to be resolved by LinkedIn - would be good to get confirmation from a LI rep here on SO. – Dody 5/1, 2018 at 17:18

Still getting it today. – Astray 17/1, 2018 at 11:58

The issue seems to be that LinkedIn OAuth API returns a 500 error when the OAuth client asks for more fields than the application is permitted to request. It can be resolved by specifying the specific fields and scope.

Per this recent discussion at GitHub (https://github.com/auth0/passport-linkedin-oauth2/issues/24), specify the specific profileFields and scope :

{
    profileFields: [
                "formatted-name",
                "headline",
                "id",
                "public-profile-url",
                "email-address",
                "location"
            ],
    scope: ["r_basicprofile", "r_emailaddress"]
}

Cannibalism answered 17/1, 2018 at 15:43 Comment(2)

Is it the norm for OAuth services to return 500's when there's a conflict/error related to client-provided details? I thought 400 "Bad Request" or some other 400 series error was the appropriate way to respond (possibly with more specific detail in a header or body). – Monogenesis 30/4, 2018 at 16:31

400 would be better, I think this was an unintended consequence of their API change which otherwise improved privacy / data use issues. – Cannibalism 3/5, 2018 at 1:52

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags