When querying the active-contracts
endpoint of a 3.x Ledger JSON API, I get no results and I see the following WARN
in the Canton logs:
PERMISSION_DENIED: Claims do not authorize
to read data as any party (super-reader wildcard)
Here is my query filter:
{
"verbose": true,
"activeAtOffset": "'${LEDGER_OFFSET}'",
"filter": {
"filtersByParty": {},
"filtersForAnyParty": {
"cumulative": [
{
"identifierFilter": {
"WildcardFilter": {
"value": {
"includeCreatedEventBlob": true
}
}
}
}
]
}
}
}
Here is the user token:
{
"sub": "alice",
"aud": "https://daml.com/jwt/aud/participant/sandbox::1220714098aeb3c1903fce76d5fa484dbcffef08542aa8482f2430df3cdfa9a13a12",
:
}
Here is the user:
{
"id": "alice",
"primaryParty": "alice::1220714098aeb3c1903fce76d5fa484dbcffef08542aa8482f2430df3cdfa9a13a12",
"isDeactivated": false,
"metadata": {
"resourceVersion": "0",
"annotations": {}
},
"identityProviderId": ""
}
Here are the user rights:
{
"rights": [
{
"kind": {
"CanActAs": {
"value": {
"party": "alice::1220714098aeb3c1903fce76d5fa484dbcffef08542aa8482f2430df3cdfa9a13a12"
}
}
}
}
]
}
Question: What do I need to change to get the WildcardFilter
to give me all the contracts in the ACS?
NOTE: These examples were done with Daml SDK 3.2.0-snapshot.20250206.0. Things may change.