SPFx REST Security Tokens

Question

Hey SPFx devs I am encountering some issues with security tokens in a small SPA I have developed on top of the SPFx framework which interacts with data in SharePoint online.

If the app is left idle or only GET requests are performed it seems like the security token goes stale and POST requests to update or insert records fail (either a 400 or a 403 error). If I refresh the page then try the same action it succeeds.

I'm using the SPFx framework with React and sp-pnp-js library to perform the REST actions.

Here's a code snippet from my TS service:

public async add(newProject){
    try{
      let res = await pnp.sp.web.lists.getByTitle(this.listName).items.add(newProject);
      return({message: "Success", data: res.data});
    }
    catch(e){
      console.log(e);
      return({message: "Error", data: e.data.responseBody['odata.error'].message.value});
    }
  }

As you can see I'm just using native sp-pnp-js functions, I can rewrite them with the HTTP client manually if it makes a difference...

Any help would be appreciated :) Thanks in advance!

if you include any code in the post it would be easy to assist you! — user9405863, Apr 18 '18 at 00:21
Fair enough - apologies. I've added some code from the save function of my service to the question. — Andrew, Apr 18 '18 at 01:25

score 0 · Answer 1 · answered Nov 13 '21 at 21:30

0

Are you setting the Pnp Js context?

sp.setup({
  spfxContext: this.props.context
});

answered Nov 13 '21 at 21:30

Joao Livio

89
1
1
13

score 0 · Answer 2 · edited Mar 01 '23 at 14:19

0

There is a known issue with SharePoint Framework ServiceScope object and access tokens as outlined in this github issue: https://github.com/pnp/pnpjs/issues/2379

The workaround if you are using latest PnP and spfi object is to use the RequestDigest() behavior when setting up, like this:

sp = spfi().using(RequestDigest())

edited Mar 01 '23 at 14:19

Fedor

17,146
13
40
131

answered Feb 23 '23 at 19:53

Steve Samnadda

1
1

SPFx REST Security Tokens

2 Answers2