Operations Center - Equipment Measurements (POST)

Click here for more information on how to get started.

Overview

The POST equipment measurements API is used to create equipment measurements at an interval determined by the third-party application managing their telematics device for equipment that they have created using the Equipment POST API.

Related Resources

Equipment
The equipment resource allows an application to collect information about machines or implements in an Operations Center organization and provides information about connected equipment or devices if needed. This API also allows an application to create third party managed equipment in an organization.

Endpoints

The term “measurements” in the context of this API refers to equipment related data for non-John Deere connected equipment created by end users or third-party applications in Operations Center. The endpoint for this API is meant to provide metadata for third-party managed devices. This API will be called at whatever interval the client deems appropriate as it gathers information about the equipment and wishes to update it in Operations Center accordingly.

Create Equipment Measurements

POST

/equipment/{principalId}/measurements

This resource allows the client to provide metadata for a third-party managed piece of equipment in Operations Center.

Getting Started
The process of contributing equipment measurement data to John Deere can be broken down into three primary steps.

Determine the Equipment’s make, type, and model IDs
Create the Equipment. Please see the Equipment API for more information on creating equipment.
Contribute Measurements

Determining the Equipment’s make, type, and model

Call the GET /equipmentMakes API endpoint to get a list of all equipment makes and a respective “id” of the equipment make you require.
Call the GET /equipmentMakes/{id}/equipmentTypes endpoint to get a list of associated equipment types for that specific equipment make and obtain a respective “id” for a specific type you require.
Call the GET /equipmentMakes/{id}/equipmentTypes/{id}/equipmentModels to obtain the final “id” of the equipment model you require.
Alternatively, you may call the GET /equipmentModels endpoint if you know the model name you are searching for. For example /equipmentModels?equipmentModelName=9RX*&embed=make,type which will include all models with search string results and include make and type 'id' as well as model 'id'.

Create the Equipment
Make a POST request to the /organizations/{orgId}/equipment API to create the piece of equipment in the user’s org.

In this request you will provide the type of the equipment, a serialNumber (optional), name (displayed to the user in Operations Center), and the equipment make, type, and model IDs.

type: Machine or Implement
serialNumber: A string identifier that is 30 characters or fewer. Must be unique within an organization.
name: The name displayed in Operation Center, 30 characters or fewer. Must be unique within an organization.
make: The ID for the Make of the vehicle, found from the previous step of this document.
type: The ID for the Type of the vehicle, found from the API in previous step of this document.
model: The id for the Model of the vehicle, found from the API in the previous step of this document.

A successful POST will result in a 201 Created response. The “location” header in the response will contain the URI to the new equipment, with the final segment being the organization specific machine ID (ie 'https://equipmentapi.deere.com/isg/equipment/12345' is a link to the machine 12345).
Once the equipment is created, you will need to follow the location header link provided above and obtain the 'principalId' of the equipment which will be used in the measurements POST URL.
If you attempt to create a machine with a vin that already exists in that organization, you get a response code 400 Bad Request. The body will include the error information.
If you attempt to create a machine with a name that already exists within the organization, you will receive a 400 Bad Request response. The body will include the error information.

Contribute Measurements
First, you must call the returned URL for the equipment created in above steps to view the new machine record, to obtain the “principalId” of the machine. Then, make a POST call to the /equipment/{principalId}/measurements API endpoint to provide metadata for the equipment that you created in the previous steps.

A properly formatted message will result in a 204 No Content response indicating that the measurement has been taken for processing. After a short delay (generally less than 30 seconds) you should see the icon on the Operations Center map reflecting the new information.
You MUST pass the “principalId” of the equipment (obtained from querying the equipment record in the GET /equipment endpoint) otherwise the API will return an error. We check to ensure the calling application and user has access to the current controlling organization of the equipment prior to accepting the measurements. Measurement will only be shown in the current controlling organization of the equipment.

OAuth Scope Required: eq2

Request URI

POST https://equipmentapi.deere.com/isg/equipment/{principalId}/measurements

Accept: application/json

Content-Type: application/json

Parameters

Parameter	Type	Description & Example	In
principalId Required	integer	The master record identifier of the equipment Example: 1234	path

Request Details

Field	Type	Description & Example
timestamp	string	Timestamp that the provided set of measurements were recorded. This will be valuable in determining the correct order of measurements in case they are provided out of order.
measurements	Array of Measurement	---
Speed name,value	string	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. vehicleSpeed only possible value for providing speed. Allowed Values: vehicleSpeed
unit	string	The unit of measure we should interpret the value as. kph is currently the only supported unit for speed. Allowed Values: kph
Heading name,value	object	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. heading only possible value for providing heading. Allowed Values: heading
unit	string	The unit of measure we should interpret the value as. degrees is currently the only supported unit for heading. Allowed Values: degrees
FuelLevel name,value	object	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. fuelLevelPercentage only possible value for providing fuel. Allowed Values: fuelLevelPercentage
unit	string	The unit of measure we should interpret the value as. percent is currently the only supported unit for fuel level. Allowed Values: percent
Latitude name,value	object	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. latitude only possible value for providing latitude. Allowed Values: latitude
unit	string	The unit of measure we should interpret the value as. degrees is currently the only supported unit for latitude Allowed Values: degrees
Longitude name,value	object	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. longitude only possible value for providing longitude. Allowed Values: longitude
unit	string	The unit of measure we should interpret the value as. degrees is currently the only supported unit for longitude Allowed Values: degrees
EngineState name,value	object	---
value	string	State of the engine. engineState only possible values are: On or Off. Example: On Allowed Values: On,Off
name	string	Name identifying which measurement this value corresponds to. engineState only possible value for providing engineState. Allowed Values: engineState
Odometer name,value	object	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. odometer only possible value for providing odometerReading. Allowed Values: odometer
unit	string	The unit of measure we should interpret the value as. km is currently the only supported unit for odometerReading Allowed Values: km
EngineHours name,value	object	---
value	number	Value of the actual measurement. The value will be used as is so it must be converted to the correct units. Example: 19.5
name	string	Name identifying which measurement this value corresponds to. engineHours only possible value for providing engineHours. Allowed Values: engineHours
unit	string	The unit of measure we should interpret the value as. hours is currently the only supported unit for engineHours Allowed Values: hours

Sample Request [JSON]

[
  {
    "timestamp": "2024-05-20T18:44:17.299Z",
    "measurements": [
      {
        "name": "vehicleSpeed",
        "value": 19.5,
        "unit": "kph"
      },
      {
        "name": "latitude",
        "value": 41.51655,
        "unit": "degrees"
      },
      {
        "name": "longitude",
        "value": -93.502778,
        "unit": "degrees"
      },
      {
        "name": "engineState",
        "value": "On"
      },
      {
        "name": "odometer",
        "value": 132992,
        "unit": "km"
      },
      {
        "name": "engineHours",
        "value": 21350.8,
        "unit": "hours"
      },
      {
        "name": "heading",
        "value": 89.9,
        "unit": "degrees"
      },
      {
        "name": "fuelLevelPercentage",
        "value": 35.7,
        "unit": "percent"
      }
    ]
  }
]

Sample Response

204 No Content

Possible Response Codes and Errors

See the body of the response for specific reason values.

Response Code	Reason	How To Resolve
204	Success
403	License Failure	The client does not have an API license for this API. Please contact API Support or the client has not provided the org2 scope in the bearer token.
403	Permission Failure	The client or user lacks permissions in the organization which controls the equipment. Check the following: 1.Your client has a connection to the organization. 2.The user on the token has access to the organization. 3.The permissions for the connection are set to at least equipment level 2 in Operations Center.
400	Invalid Payload	Something about the body sent is invalid. See body for details. Some examples include: Malformed body Improper values which cannot be mapped to the expected type The equipment or its associated organization does not exist The equipment has a John Deere terminal Telematic enabled equipment managed by John Deere may not have measurement contributed by other means

Authentication (OAuth 2)

The John Deere Precision Tech API endpoints use OAuth 2.0 for authentication. OAuth is an open protocol, and these APIs currently only support the authorization code grant type for external applications.

You can also see our sample code for examples of navigating our OAuth 2 authentication code flow.

Create an Application on Developer.Deere.com
You must be a validated John Deere user to create an application on developer.deere.com. If you do not have a John Deere username and password, you can create one using the Create an Account option on our digital tools home page here: https://www.deere.com/en/digital-tools/. You must be able to sign into the developer.deere.com to use the Create Application option in the My Applications section of the website. Please follow the steps of the Create Application workflow on the website before proceeding to the next steps.
Once your application is created, the Security section of the application Details will provide you with the Application ID and Secret necessary for the next steps to sign your API token requests.
A note on Redirect URIs (Callback URLs):
During the creation of the application (or found after creation in the application Details/Security section) you will need to define one or any number of Redirect URIs (Callback URLs). These are required for the OAuth 2 authentication flow. If you do not have this when creating the application, there is an example given in that section when creating the application that you may use for now which is http://localhost:9090/callback
If Redirect URIs are not added to your application properly or used in the authentication process in a different format than listed in the application details (for example encoded vs non-encoded), your users will experience a 400 Bad Redirect error during authentication.
Call the OAuth 2 well-known URL
With your application client or a web browser window, make a GET request to https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/.well-known/oauth-authorization-server. This URL contains the authorization and token endpoints, as well as the available scopes mentioned in the steps below.
Sample Response [JSON]
{ "issuer": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7", "authorization_endpoint": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/authorize", "token_endpoint": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/token", "registration_endpoint": "https://signin.johndeere.com/oauth2/v1/clients", "jwks_uri": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/keys", "response_types_supported": [ "code", "token", "id_token", "code id_token", "code token", "id_token token", "code id_token token" ], "response_modes_supported": [ "query", "fragment", "form_post", "okta_post_message" ], "grant_types_supported": [ "authorization_code", "implicit", "refresh_token", "password", "client_credentials", "urn:ietf:params:oauth:grant-type:device_code" ], "subject_types_supported": [ "public" ], "scopes_supported": [ "ag1", "ag2", "ag3", "eq1", "eq2", "files", "finance1", "finance2", "org1", "org2", "work1", "work2", "openid", "profile", "email", "address", "phone", "offline_access", "device_sso" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none" ], "claims_supported": [ "ver", "jti", "iss", "aud", "iat", "exp", "cid", "uid", "scp", "sub" ], "code_challenge_methods_supported": [ "S256" ], "introspection_endpoint": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/introspect", "introspection_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none" ], "revocation_endpoint": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/revoke", "revocation_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none" ], "end_session_endpoint": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/logout", "request_parameter_supported": true, "request_object_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "device_authorization_endpoint": "https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/device/authorize", "dpop_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ] }

Acquire an authorization code

The authorization code is obtained by using the authorization server as an intermediary between the client and resource owner. The client directs the resource owner to an authorization server, and once authorized the server redirects the resource owner back to the client with the authorization code. Along with the GET request to the authorization server URL, you will need to send a response type code parameter, along with OAuth scopes, client ID, state, and redirect URI.

The authorization URL for the user to follow (in a web browser) should look like this:

GET

'https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/authorize?response_type=code&scope={scopes}&client_id={clientId}&state={state}&redirect_uri={redirect_uri}

A note on OAuth Scopes and Data Permissions:

In the Dev Docs API sections, the required OAuth scopes will be referenced for each method and endpoint. For the OAuth access token, you must request the required scopes for each endpoint your application will be using. DO NOT request all scopes available on our authorization server as not all are required for your application, and your users should be prompted to only accept scopes (permissions) necessary for the API calls you will be making.

The OAuth scopes your application requests initially for a user access token will directly relate to the permissions granted when the user makes the organization connection to your application. Please refer to the scopes table below. These scopes directly relate to user, partner, and Connected Software Company data access permissions referenced in Team Manager.

Note: If the user has less permissions in their own organization(s) or their partner organization(s) than the scopes you are requesting initially, only the user’s permission set will be assumed in the connection from the selected organization to your application. We will not grant more permissions to your application than the connecting user has.

Once the connection from the user’s organization is made to your application, you may request a higher-level scope or new scopes for the user access token, however, the connection permissions must also be adjusted by the user in https://connections.deere.com for the requesting application. Before adjusting those permission levels in the Connections website, the user must have obtained those permissions in their own organization or must be shared by the partner organizations that are currently connected.

Scope	User/Connection Permission	Description
org1	Organization Management Access Level 1	View Staff, Operators, and Partners
org2	Organization Management Access Level 1 Organization Management Access Level 2	View Staff, Operators, and Partners Modify Staff, Operators, and Partners
eq1	Equipment Access Level 1 RDA Setup & WDT	View Equipment Remote Display Access Setup File Creator, Products, and Wireless Data Transfer
eq2	Equipment Access Level 1 Equipment Access Level 2 Equipment Access Level 3 RDA Setup & WDT	View Equipment Edit Equipment (also View Detailed Machine Measurements) Manage Equipment Remote Display Access Setup File Creator, Products, and Wireless Data Transfer
ag1	Locations Access Level 1	View Locations (Clients, Farms, Fields and Associated Data)
ag2	Locations Access Level 1 Locations Access Level 2	View Locations (Clients, Farms, Fields and Associated Data) Analyze Production Data (Website Access Only)
ag3	Locations Access Level 1 Locations Access Level 2 Locations Access Level 3	View Locations (Clients, Farms, Fields and Associated Data) Analyze Production Data (Website Access Only) Manage Locations & Production Data (Website and API Access)
files	Files API Access Equipment Access Level 3 Setup & WDT	Files API Access (ag3 scope also required for most file types) Manage Equipment Setup File Creator, Products, and Wireless Data Transfer
finance1	Financial Access Level 1	View Financials
finance2	Financial Access Level 1 Financial Access Level 2	View Financials Manage Financials
work1	Work and Crop Plans Access Level 1	View Work and Crop Plans
work2	Work and Crop Plans Access Level 1 Work and Crop Plans Access Level 2	View Work and Crop Plans View Work and Crop Plans
offline_access	API Authentication Only	Request a Refresh Token

To summarize the Authorization Code steps:

The customer initiates a request for data from a client application, and the client sends an OAuth request to the authorization server with the proper headers.
The customer is redirected to the John Deere sign-in page.
The customer signs into John Deere, and the request is redirected back to the authorization server.
The customer is then presented with the scope allowance screen. (During first token request, or with modified scopes)
Scope acceptance is sent back to the OAuth server, and the customer is then redirected back to the client application with the authorization code.

Acquire an Access Token
Once the application has the authorization code, the client then requests an access token from the token server by sending a grant type authorization_code parameter, along with the authorization code, a redirect URI, and the client credentials. The authorization server authenticates the client and issues an access token and a refresh token (only if offline_access scope was requested in the previous step). The access token will expire after 12 hours after which it must be refreshed (see the last step).
POST
https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/token
Content-Type: application/x-www-form-urlencoded
- grant_type=authorization_code
- code={auth_code_from_authorize_call_response}
- redirect_uri={redirect_uri}
- client_id={client_id}
- client_secret={client_secret}
Post authorization redirect to enable organization access
Once the client obtains a valid access token, there is an additional step required to enable organization data access for your client application. If this step is skipped, the client will receive a 403 Forbidden response when trying the access data for any organization to which the user has access
1. Make a call to GET /organizations. If you see a ‘connections’ link in the response, your client has not granted access to that organization.
  Note: A user may have access to multiple organizations but may not enable access to all of them. A ‘connections’ may always be returned for an organization the user chooses not to allow your application access to.
  Example Response:
```
[
  {
    "@type": "Organization",
    "name": "Spahn Ranch",
    "type": "customer",
    "member": true,
    "internal": false,
    "id": "283480",
    "links": [
      {
        "@type": "Link",
        "rel": "self",
        "uri": "https://apiqa.tal.deere.com/platform/organizations/283480"
      },
      {
        "@type": "Link",
        "rel": "connections",
        "uri": "https://connections.deere.com/connections/deere-sld8shg8ee0o8ns8nhdh88hn/select-organizations"
      }
    ]
  }
]
```
2. Redirect the user to Operations Center (in a web browser) using the URI provided in the ‘connections’ link. You can also provide a redirect_uri query parameter so the user will be redirected back to your application after the organization selection process is completed. The redirect_uri that is provided must match one of the Redirect URIs listed in your application profile. The redirect_uri must also be URL encoded (i.e. “https://example.client.com/callback” should be passed as “https%3A%2F%2Fexample.client.com%2Fcallback”).
  Example URI: https://connections.deere.com/connections/{clientId}/select-organizations?redirect_uri={redirectUri}
3. The user selects the organization(s) to which your client can have access.
4. Once the organization selection is complete, the user will be redirected back to your application based on the redirect_uri query parameter that was provided. If the redirect_uri query parameter is not provided or is invalid, then the user will remain on the Connections application in Operations Center.
  Additionally, the GET /organizations endpoint will no longer include the ‘connections’ link and instead will include a ‘manage_connections’ link. This will link into the management modal in Connections for the application in the organization. Having the ‘manage_connections’ link implies that a connection between an application and organization is fully established.
  Example Response:
```
[
  {
    "@type": "Organization",
    "name": "Spahn Ranch",
    "type": "customer",
    "member": true,
    "internal": false,
    "id": "283480",
    "links": [
      {
        "@type": "Link",
        "rel": "self",
        "uri": "https://apiqa.tal.deere.com/platform/organizations/283480"
      },
      {
        "@type": "Link",
        "rel": "manage_connections",
        "uri": "https://connections-qual.deere.com/connections/deere-sld8shg8ee0o8ns8nhdh88hn/connections-dialog?orgId=283480"
      }
    ]
  }
]
```
5. Avoid getting into a redirect loop and only perform the connections redirect one time per user session. There are a few scenarios in Operations Center when a user either decides not to or is unable to complete the organization selection step. If your application does not have access to an organization after completing the connections redirect, we suggest that you inform the user that the connection was not completed and they may need to login to Operations Center to modify the Connection manually.
Use the access token to call API resource
Once the client obtains the valid access token and the user has enabled organization access for the client, they can use this token to call the appropriate resource server (API) to obtain the data needed.
For API call structure, parameters, and headers, refer to the Dev Docs section.
All your API calls should include an Authorization: Bearer {token} utilizing the obtained token.
Setup Token Refresh Process
The client application will need to pass a refresh token to the authorization (token) server to obtain a new access token before the access token expires (12 hours). For this you will pass through a refresh_token grant type parameter, along with the refresh_token to the token server.
Even if the customer did not request a resource call, the client would need to initiate a periodic refresh of this token to keep it 'hot'. The refresh token will expire after 365 days if it is not used. If the refresh token expires, the customer will need to re-authenticate. As long as you continue to refresh the access token with this refresh token, it will remain active indefinitely (unless the customer removes all organization connections on https://connections.deere.com to your application).
POST
https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/v1/token
Accept: application/json
Content-Type: application/x-www-form-urlencoded
- grant_type=refresh_token
- refresh_token={refresh_token}
- redirect_uri={redirect_uri}
- scope={scopes}
- client_id={client_id}
- client_secret={client_secret}

Using Postman to call the MyJohnDeere API (OAuth 2)

Postman is a third-party API client, which you can use to test your John Deere API calls. You may use the Postman website or the desktop application for calling APIs while in Sandbox to see and follow REST API responses. Other API test clients may work for this as well. The below instructions will provide the initial setup steps to get Postman configured and obtain an OAuth 2 token.

Download and install Postman on your computer (link above), or you may use the web version.
Open Postman, click on Settings at the top, and in General settings turn off all of the Headers options.
In the top nav section of the Postman client application, you can hit the + sign to add a new request to your console.
In the Auth section of that new request tab, there is a dropdown to select the type of authorization you’ll be using. Select the OAuth2 option.
The screen will change, and you will see Type is set as OAuth 2.0.
Add auth data to should be set as Request Headers.
Header Prefix should be set as Bearer.
Within the Configure New Token section, you will need to add values to each of the fields or configure the options before selecting the Get New Access Token button (or it will error out).

Add a Token Name (can be anything).
Leave the Grant Type as Authorization Code.
The Callback URL for redirecting the authorization code back to Postman is https://www.getpostman.com/oauth2/callback. The Callback URL can be set to anything in this example. Remember that if you will be using this Postman callback URL, it (and any other Callback URL you use) will need to be synced with your OAuth client. See step 2 in this document for help in syncing this Callback URL with your application.
The Auth URL and Access Token URL can be found with opening a new Postman request window and doing a GET on this URL https://signin.johndeere.com/oauth2/aus78tnlaysMraFhC1t7/.well-known/oauth-authorization-server. No Auth is needed for this GET request. You can also open this URL in any internet browser window.
For the Client ID and Client Secret Developer.Deere.com, login, and access your application profile in the "My Applications" section.

In the Details window, under the Security section, you will find this information. What Postman calls the Client ID is called "Application Id" in this window. What Postman calls the Client Secret is called "Secret" in this window. Copy the necessary information into the Postman token section.

The Scope box should be populated with only the scopes require for the API calls you are making (space delimited). The scopes required for your API calls can be found in the Dev Docs section of every API under each endpoint’s documentation.
State is an opaque value to prevent cross-site forgery. Enter any unique string in this box (ex. 12345).
For Client Authentication, this option should be set to Send client credentials in body for this example. (not selecting this option will result in an error)

Once the steps above are complete, press the Get New Access Token button to proceed to the John Deere sign in page where a valid Operations Center user can sign in. If this is the first time the user is obtaining an API token for your application, they will be presented with the scopes acceptance screen, to which they must choose Allow Access (Don’t Allow will result in a token with no assigned scopes).

In the Details window, the first two pieces of information that OAuth requires are found in the Application Details section (illustration below). What Postman calls the Client ID is called "Application Id" in this window. What Postman calls the Client Secret is called "Secret" in this window. Copy the necessary information into the Postman token section.

Once the token is obtained and shown in the Postman screen, select the Use Token button to apply the token to your current API call. (you do not need to configure Authorization headers on the API call, as Postman will do this for you)
The next step is to enter the URL of the API call and configure an Accept header. To test, please configure the API URL to be GET https://sandboxapi.deere.com/platform/organizations. In the Headers section, please configure an Accept header with a value of application/vnd.deere.axiom.v3+json. (you may leave the default Postman headers in the request, if applicable)
Only once all the steps above are completed, can you hit the Send button in the API request to make the API call and receive a 200 OK response and response body.
If you can’t complete this process or have any questions, please feel free to use the Support button in the top navigation of the page to contact us.

Common Error Codes

When a client application is making requests to John Deere APIs, it will encounter HTTP response errors that should be handled appropriately. Below you will find most of these errors and instructions on handling them.

400 Bad Request

HTTP Code: 400
Response code: Bad Request

This error means that either the POST/PUT body used in the request is incorrect, or if this error is seen in the OAuth 2 POST /token request, it means the refresh token is invalid. Before contacting API Support, please attempt to update the request body or get a valid token for the user. Please see the OAuth 2 documentation here.

401 Unauthorized

HTTP Code: 401
Response code: Server Authorization Failed

This error means that either the application does not have a license for the endpoint, or the user token is expired. Before contacting API Support, please attempt to get a valid token for the user, or use the refresh token process to get a new access token. Please see the OAuth 2 documentation here. Information about what APIs a client application can call by default are listed here, and all other APIs listed on the website are only accessible via a given license.

403 Forbidden

HTTP Code: 403
Response code: Access Denied

This error pertains to the user not having access to this resource. You should only request resources found while navigating the REST endpoints for the user. If the client calls for a resource the user does not have access to, the request will be denied. You can prevent this error by beginning your calls with /platform, and following the returned links to discover resource IDs available to the user (most are found under the /organizations link).

HTTP Code: 403
Response: The client does not have a proper access for this API

This error relates to missing OAuth 2 scopes for the user token. Along with this error code, you will see the client ID, license needed, and read/write/delete scopes needed for that license to make the corresponding requests.

HTTP Code: 403
Response: Requested org is in a restricted state

This error relates to our updates Orgs Terms & Conditions process. We have a guide for handling these requests here.

404 Not Found

HTTP Code: 404
Response code: The requested resource was not found

This error means that the resource ID requested is not valid. All resource IDs should be parsed from API responses immediately before requesting access to it. If IDs are stored for long periods of time, user access to that resource could change or be removed.

429 Too Many Requests

HTTP Code: 429
Response code: HTTP_TOO_MANY_REQUESTS

When the John Deere Servers are overwhelmed by requests, clients may receive a HTTP 429 response. That response may include a "Retry-After" header with a numeric value indicating the number of seconds the client should wait before trying again. When you receive a 429 response with that header, you have to wait at least for the specified time before retrying the request. If a customer is actively waiting for the result, you may need to return an error instead of waiting. If your application is fully asynchronous, always wait the Retry-After amount.

503 Service Unavailable

HTTP Code: 503
Response code: : HTTP_SERVICE_UNAVAILABLE

When John Deere Servers have a backend or server problem, they MAY return a corresponding Retry-After header along with a 503 response. If a 503 is returned without a Retry-After header then John Deere Servers cannot estimate a reasonable recovery time. Your application should enter an exponential back-off loop or return an error in this case. If a Retry-After header is returned, wait the number of seconds given and try again

For all other possible status codes, please refer to this resource that is publicly available (provided by Wikipedia).