Getting 401 Unauthorized When Trying to Add Product via API or Seed Script

[yankdownunderbbq]

I’m running into a persistent issue when trying to add a product to my Medusa backend—whether via Postman, cURL, or a custom seed script. Every attempt returns a 401 Unauthorized error.

Even trying to get a JWT token with valid username and password on admin/auth returns a 401.

(I just hooked up a new domain to my production environment, wondering if that could cause the problem)

Has anyone faced this issue recently? Any suggestions on where else to check would be much appreciated.

Thanks in advance!

— Reggie

[business2650-sketch]

Exactly same issue here

[carlos-r-l-rodrigues]

Did you set the domain(s) to the CORS?

in your medusa-config.ts:

defineConfig({
  projectConfig: {
      databaseUrl: process.env.DATABASE_URL,
      http: {
        storeCors: process.env.STORE_CORS!,
        adminCors: process.env.ADMIN_CORS!,
        authCors: process.env.AUTH_CORS!,
      }
  }
})