Skip to content
Start building
Back

Token Not Working for Storage

  • 0
  • Auth
View on Discord
Josh
7 Oct, 2025, 21:17

Hi All. I just started using AppWrite with Android (kotlin) and I am having some issues getting the JWT token to allow my user to pull down image from Storage with read permissions. I know the token is valid and not-expired because I checked the JWT expiration date and the token is also for my logged in user. I will show you the steps I have taken below:

I am logging in the user and getting a token:

TypeScript
    val session = account.createEmailPasswordSession(email, password)
    val token = account.createJWT()
    ...

Just to isolate Android from my AppWrite setup, I pulled the token out and plugged it into Postman to query my AppWrite Storage endpoint:

This is the message i get with that:

TypeScript
{
    "message": "The current user is not authorized to perform the requested action.",
    "code": 401,
    "type": "user_unauthorized",
    "version": "1.8.0"
}

I have given my user (the same one I have the token for) read permissions on my AppWrite Storage.

If I give my Storage Any with read permission, I am able to access the image in storage just fine. So it seems to be blocking based on my invalid token or my request url (I am just copying the file url from the Storage area in AppWrite to get the url).

Any help would be greatly appreciated!

Thanks!

TL;DR
Developers having trouble using JWT token to access AppWrite Storage on Android with Kotlin. Token is valid and for logged-in user, but receiving 401 unauthorized error when trying to fetch image. User has `read` permissions in AppWrite Storage. Access is successful with `Any` permission. Possible issues with token validity or request URL.
Reply

Reply to this thread by joining our Discord

Reply on Discord

Recommended threads

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more