/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
- A technical user account is unable to authenticate successfully when calling the Timeline Service API via a mashup application in SAP Cloud for Customer.
- Although a token is generated successfully and passed in the request header (x-sap-crm-token), the API response returns an ACCESS_DENIED error. As a result, timeline data for accounts or contacts cannot be retrieved using the technical user.
Environment
SAP Cloud for Customer
Reproducing the Issue
- Generate an authentication token using the technical user credentials via the first endpoint.
- Include the generated token in the request header (x-sap-crm-token) when calling the Timeline Service API (second endpoint).
- Execute the request to retrieve timeline activities for an account using the relevant filter.
- The response returns the following payload instead of timeline data:
{
"value": [
{
"accessRestrictionType": "ACCESS_DENIED"
}
]
}
Cause
- The Timeline API is not exposed or released for via the SAP API Hub
- If the API endpoint was accessed, it was likely discovered through the browser’s network activity rather than through officially supported documentation
- This is a side-by-side add-on scenario (not V2). Technical users created in V1 may not have the required business authorizations to access Timeline-related data
- CAM users have the necessary business access, which explains why the API call works when a different user is used
- The Timeline service itself does not directly validate user access; instead, access control is delegated to the underlying services that generate timeline entries
- Calling this Timeline API directly is not recommended, as it may lead to inconsistent or unsupported behavior
Resolution
The “ACCESS_DENIED” response observed when using the technical user is expected behavior, as this API is not intended or supported. At this time, we do not see a supported business use case for accessing Timeline data through this API
Keywords
Timeline Service, Timeline API, ACCESS_DENIED, Technical User, Authentication Failure, Mashup Application, x-sap-crm-token, Side-by-Side Extension, Authorization , KBA , CEC-CRM-TIM , Timeline for SAP Sales/Service Cloud , Problem
Product
SAP Cloud for Customer core applications all versions
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)