Discussions

Hello,

I am currently integrating with the Rose Rocket API. This is a replicated environment which is already working for a different client_id, client_secret, username and password. I am encountering an issue while attempting to retrieve an OAuth2 access token using the Password Grant Type.

Despite verifying my credentials, the authentication endpoint is returning a 400 Bad Request with the message: "Incorrect password".

Request Details:

Endpoint: POST https://auth.roserocket.com/oauth2/token

Grant Type: password

Troubleshooting Performed:

    I have confirmed I can log into the Rose Rocket web dashboard using these exact credentials.

    I have verified there are no trailing spaces or hidden characters in the Postman body.

    I have tried sending the client_id and client_secret both in the body and as Basic Auth headers, but the "Incorrect password" error persists.

Questions:

Is there a specific setting or permission within our Organization's "Integrations" section that must be enabled for the Password Grant flow?

Is there a user level permission that needs to be given? In the existing working environment we use a different user email "[email protected]" with its own password. For consistency, should we add the same user with same permissions to the new RoseRocket account:

Adrian