When attempting to use the http request node to access a 3rd party API I consistently get rejected from the endpoint with a 403 error. Its using basic authorization + 2 url params. Ordinarily I’d blame the API, but n8n seems to be the only service that can’t successfully do it. I’ve done the exact same request from postman, from inside a smithery.ai server, and from Microsoft Power Automate, all without any issues at all.
Things I’ve tried:
- Standard n8n basic auth credentials.
- Encoding the credentials manually in base64 and manually placing “Authorization: Basic [MY_TOKEN]” in the headers.
- I’ve even copied the EXACT header object, authorization and all, out of postman’s console and placed it in the headers of the http request node.
Share the output returned by the last node
403Forbidden. The server understood the request but refuses to authorize it.
Edit: Finally got the response headers which have “cf-mitigated": “challenge” in them. Looks like n8n trigger’s Cloudflairs botting response. Very cool.
Information on your n8n setup
- n8n version: 1.107.3
- Database (default: SQLite): Default
- n8n EXECUTIONS_PROCESS setting (default: own, main): Unknown
- Running n8n via (Docker, npm, n8n cloud, desktop app): Cloud
- Operating system: Windows