Enable Banking use of environment variables #11891

Ilpredatore · 2026-03-06T16:12:42Z

Ilpredatore
Mar 6, 2026

Hi there,

When I try to use the Enable Banking via Importer using environment variables I always get this error:

local.ERROR: OpenSSL unable to validate key {"exception":"[object] (DomainException(code: 0): OpenSSL unable to validate key at /var/www/html/vendor/firebase/php-jwt/src/JWT.php:269)

I tried to put the PEM file in one line, replacing all enters with '\n' and I also tried to mount the PEM file and point the ENABLE_BANKING_PRIVATE_KEY to the file location, but I always get the 500 internal error with the logs showing the error I pointed in the beginning.

I am able to proceed if I do not use the environment variable and I fill the form (OPTION B of the tutorial)...

Do you think you could give an example in the tutorial how to mount the file and use the ENABLE_BANKING_PRIVATE_KEY variable pointing to that location?

Thank you,

Originally posted by @ZeluisFS in #11733

Ilpredatore · 2026-03-06T16:31:46Z

Ilpredatore
Mar 6, 2026
Author

Hello, I "reopen" previous discussion because I have the same error.
After correct manual import from UI, i saved Json and now i'm trying to automate the task.

But what i get is the following error:

[2026-03-06 17:21:36] production.DEBUG: App\Services\Shared\Authentication\SecretManager::getAccessToken
[2026-03-06 17:21:37] production.DEBUG: No access token in session, will return header or config variable.
[2026-03-06 17:21:37] production.DEBUG: Access token in header is empty, will be ignored.
[2026-03-06 17:21:37] production.DEBUG: Access token is null, use config instead.
Trying to connect to https://firefly.+.org/...
The last 25 chars of the access token are: FEpXYrDGuqMS0FCzapcHDG97Y
Welcome to the Firefly III data importer, vdevelop/2026-03-03
[2026-03-06 17:21:37] production.DEBUG: [develop/2026-03-03] Now in App\Console\Commands\Import::handle
[2026-03-06 17:21:37] production.DEBUG: importFileAsImportJob: importable ""
[2026-03-06 17:21:37] production.DEBUG: importFileAsImportJob: JSON "/import/config.json"
[2026-03-06 17:21:37] production.DEBUG: JSON says the flow is "eb"
[2026-03-06 17:21:37] production.DEBUG: Refresh unique instance identifier: 5c91f57e-4ec7-43f6-a41b-881049e4146b
[2026-03-06 17:21:37] production.DEBUG: Saved import job with key "2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da" to disk.
[2026-03-06 17:21:37] production.DEBUG: Created new import job with key "2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da"
[2026-03-06 17:21:37] production.DEBUG: Saved import job with key "2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da" to disk.
[2026-03-06 17:21:37] production.DEBUG: Saved import job with key "2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da" to disk.
[2026-03-06 17:21:37] production.DEBUG: Saved import job with key "2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da" to disk.
[2026-03-06 17:21:37] production.DEBUG: [develop/2026-03-03] Now in App\Services\Shared\Configuration\Configuration::updateDateRange
[2026-03-06 17:21:37] production.DEBUG: Range is partial.
[2026-03-06 17:21:37] production.DEBUG: dateNotBefore is now "2026-02-27"
[2026-03-06 17:21:37] production.DEBUG: dateRangeNotAfterUnit is "", dateNotAfter will be empty.
[2026-03-06 17:21:37] production.DEBUG: dateNotAfter is now ""
[2026-03-06 17:21:37] production.DEBUG: Saved import job with key "2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da" to disk.
[2026-03-06 17:21:37] production.DEBUG: Now in parseImportJob("2fad5cc3-7d3d-47f5-81a7-dd4b1b2534da")
[2026-03-06 17:21:37] production.DEBUG: No asset accounts or liabilities found, will collect them now.
[2026-03-06 17:21:37] production.DEBUG: Now in App\Repository\ImportJob\ImportJobRepository::getApplicationAccounts
[2026-03-06 17:21:37] production.DEBUG: No base url in getBaseUrl() session, will return config variable.
[2026-03-06 17:21:37] production.DEBUG: App\Services\Shared\Authentication\SecretManager::getAccessToken
[2026-03-06 17:21:37] production.DEBUG: No access token in session, will return header or config variable.
[2026-03-06 17:21:37] production.DEBUG: Access token in header is empty, will be ignored.
[2026-03-06 17:21:37] production.DEBUG: Access token is null, use config instead.
[2026-03-06 17:21:37] production.DEBUG: Fetching asset accounts from Firefly III. {"url":"https://firefly.+.org/"}
[2026-03-06 17:21:37] production.DEBUG: Fetched 5 asset accounts.
[2026-03-06 17:21:37] production.DEBUG: Fetching liability accounts from Firefly III. {"url":"https://firefly.+.org/"}
[2026-03-06 17:21:37] production.DEBUG: Fetched 0 liability accounts.
[2026-03-06 17:21:37] production.DEBUG: No base url in getBaseUrl() session, will return config variable.
[2026-03-06 17:21:37] production.DEBUG: App\Services\Shared\Authentication\SecretManager::getAccessToken
[2026-03-06 17:21:37] production.DEBUG: No access token in session, will return header or config variable.
[2026-03-06 17:21:37] production.DEBUG: Access token in header is empty, will be ignored.
[2026-03-06 17:21:37] production.DEBUG: Access token is null, use config instead.
[2026-03-06 17:21:37] production.DEBUG: Now in flow("eb")
[2026-03-06 17:21:37] production.DEBUG: [develop/2026-03-03] Now in App\Services\EnableBanking\Validation\NewJobDataCollector::collectAccounts
[2026-03-06 17:21:37] production.DEBUG: Refresh unique instance identifier: 5779a8a6-15b4-4197-9b20-67ab4c6aa281
[2026-03-06 17:21:37] production.DEBUG: Have 1 session(s) for import.
[2026-03-06 17:21:37] production.DEBUG: Have NO accounts in cache.
[2026-03-06 17:21:37] production.DEBUG: Enable Banking authenticatedGet(https://api.enablebanking.com/sessions/e5671c54-634c-40c3-8228-a3c02b13a1c3)
[2026-03-06 17:21:37] production.DEBUG: Generating Enable Banking JWT token
[2026-03-06 17:21:37] production.DEBUG: No Enable Banking App ID in session, will return config variable.
[2026-03-06 17:21:37] production.DEBUG: No Enable Banking private key in session, will return config variable.
[2026-03-06 17:21:37] production.ERROR: OpenSSL unable to validate key {"exception":"[object] (DomainException(code: 0): OpenSSL unable to validate key at /var/www/html/vendor/firebase/php-jwt/src/JWT.php:269)
[stacktrace]
#0 /var/www/html/vendor/firebase/php-jwt/src/JWT.php(232): Firebase\\JWT\\JWT::sign()
#1 /var/www/html/app/Services/EnableBanking/JWTManager.php(55): Firebase\\JWT\\JWT::encode()
#2 /var/www/html/app/Services/EnableBanking/Request/Request.php(88): App\\Services\\EnableBanking\\JWTManager::generateToken()
#3 /var/www/html/app/Services/EnableBanking/Request/Request.php(115): App\\Services\\EnableBanking\\Request\\Request->getHeaders()
#4 /var/www/html/app/Services/EnableBanking/Request/GetAccountsRequest.php(52): App\\Services\\EnableBanking\\Request\\Request->authenticatedGet()
#5 /var/www/html/app/Services/EnableBanking/Validation/NewJobDataCollector.php(106): App\\Services\\EnableBanking\\Request\\GetAccountsRequest->get()
#6 /var/www/html/app/Repository/ImportJob/ImportJobRepository.php(216): App\\Services\\EnableBanking\\Validation\\NewJobDataCollector->collectAccounts()
#7 /var/www/html/app/Console/AutoImports.php(247): App\\Repository\\ImportJob\\ImportJobRepository->parseImportJob()
#8 /var/www/html/app/Console/Commands/Import.php(112): App\\Console\\Commands\\Import->importFileAsImportJob()
#9 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(36): App\\Console\\Commands\\Import->handle()
#10 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Util.php(43): Illuminate\\Container\\BoundMethod::{closure:Illuminate\\Container\\BoundMethod::call():35}()
#11 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(96): Illuminate\\Container\\Util::unwrapIfClosure()
#12 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(35): Illuminate\\Container\\BoundMethod::callBoundMethod()
#13 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Container.php(799): Illuminate\\Container\\BoundMethod::call()
#14 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(211): Illuminate\\Container\\Container->call()
#15 /var/www/html/vendor/symfony/console/Command/Command.php(341): Illuminate\\Console\\Command->execute()
#16 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(180): Symfony\\Component\\Console\\Command\\Command->run()
#17 /var/www/html/vendor/symfony/console/Application.php(1117): Illuminate\\Console\\Command->run()
#18 /var/www/html/vendor/symfony/console/Application.php(356): Symfony\\Component\\Console\\Application->doRunCommand()
#19 /var/www/html/vendor/symfony/console/Application.php(195): Symfony\\Component\\Console\\Application->doRun()
#20 /var/www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(198): Symfony\\Component\\Console\\Application->run()
#21 /var/www/html/artisan(35): Illuminate\\Foundation\\Console\\Kernel->handle()
#22 {main}
"}

In JWT.php line 269:

OpenSSL unable to validate key

I modified file PEM (as @JC5 guide) removing returns and adding two \n (-----\n*****\n-----), but doesn't work. I tried to load variable either in .env or in environment variable, but inspecting docker, \n is loaded as \\n.

I'm using Unraid OS

Thank you very much

Federico

1 reply

JC5 Mar 6, 2026
Maintainer

Hey, thanks for starting this discussion.

Sorry about this, but I have no idea how Unraid processes environment variables. But surely I’m not the first who needs to have newlines in a variable?

Cheers,
James

Ilpredatore · 2026-03-06T16:52:23Z

Ilpredatore
Mar 6, 2026
Author

I searched a lot online, but I can't find a working solution.
There isn't another way to load a .pem cert?

I'm thinking about a new command option:

docker exec -it $(docker ps -aqf "name=Firefly-III-Data-Importer") php artisan importer:import /import/config.json /import/enable-banking.pem

What do you think?

Thank you.

0 replies

Triserden · 2026-03-08T22:08:26Z

Triserden
Mar 8, 2026

This unfortunately seems to also be my issue, as SOPS(-nix, where I keep all my homelab passwords in) doesn't seem to support newlines??? Very strange, and it seems like the resolving PR is not really going to get merged anytime soon.

A solution I saw floating online was to encode the key into a base64, store that as an environment variable, then decode it as needed. That would make things a lot easier for the end user, but that would be on JC5/contributors to determine if it's actually implementable or not.

3 replies

JC5 Mar 9, 2026
Maintainer

That is a very good idea. I'll pick that up!

JC5 Mar 9, 2026
Maintainer

This is now possible. See here for instructions: https://github.com/orgs/firefly-iii/discussions/11891#discussioncomment-16051848

Triserden Mar 10, 2026

It works! Didn't have enough time to set up automated imports with this, but I'll do it when I have time.

Akinator31 · 2026-03-09T10:36:41Z

Akinator31
Mar 9, 2026

Hello,

I encountered the same problem when I tried to enter my Enable Banking private key in my Docker Compose file. I followed the instructions in the documentation to add a \n after “-----BEGIN PRIVATE KEY-----” and a second one before “-----END PRIVATE KEY-----,” but it never worked.

Looking at the import code, I saw that it was PHP and that you could directly provide a file using file:// in ENABLE_BANKING_PRIVATE_KEY :

<?php

declare(strict_types=1);

return [
    'application_id'        => env('ENABLE_BANKING_APP_ID', ''),
    'private_key'           => env('ENABLE_BANKING_PRIVATE_KEY', ''),
    'url'                   => env('ENABLE_BANKING_URL', 'https://api.enablebanking.com'),
    'countries'             => require __DIR__.'/shared/countries.php',
    'unique_column_options' => [
        'external-id' => 'External identifier',
    ],
];

So you just have to set ENABLE_BANKING_PRIVATE_KEY=file://path-to-your-pem-file in your env.

Is it possible to add this to the documentation @JC5 ?

12 replies

Akinator31 Mar 9, 2026

Okay, no problem, I'll do that. Thanks for your work, anyway.

Ilpredatore Mar 9, 2026
Author

If you're interested, you can use the :develop release of the Firefly III data importer. It has support for the following way of entering your private key:

Remove -----BEGIN PRIVATE KEY----- and -----END PRIVATE KEY-----

Remove all newlines and make it one giant long piece of text.

Set it as environment variable: ENABLE_BANKING_PRIVATE_KEY=miiblablabla....blabla

Hello @JC5! Thank you very much for this!!
I looked up for 3 days for a solution for newlines, but I didn't find it.

I need develop-20260309 for testing the new function?

Federico

JC5 Mar 9, 2026
Maintainer

Yes, either develop-20260309 or :develop on Docker.

Ilpredatore Mar 9, 2026
Author

Yes, either develop-20260309 or :develop on Docker.

Ok, so i need to wait because im Unraid Os :develop command pulls 2026-03-07 yet

JC5 Mar 9, 2026
Maintainer

Mmm. I see it has been pushed: https://hub.docker.com/r/fireflyiii/data-importer/tags

Let me know when its there!

Ilpredatore · 2026-03-09T22:21:52Z

Ilpredatore
Mar 9, 2026
Author

Ok I updated importer, but still not working. Key is correctly loaded, but return this error:

[2026-03-09 23:14:18] production.DEBUG: App\Services\Shared\Authentication\SecretManager::getAccessToken
[2026-03-09 23:14:18] production.DEBUG: No access token in session, will return header or config variable.
[2026-03-09 23:14:18] production.DEBUG: Access token in header is empty, will be ignored.
[2026-03-09 23:14:18] production.DEBUG: Access token is null, use config instead.
Trying to connect to https://firefly.+.org...
The last 25 chars of the access token are: FEpXYrDGuqMS0FCzapcHDG97Y
Welcome to the Firefly III data importer, vdevelop/2026-03-09
[2026-03-09 23:14:18] production.DEBUG: [develop/2026-03-09] Now in App\Console\Commands\Import::handle
[2026-03-09 23:14:18] production.DEBUG: importFileAsImportJob: importable ""
[2026-03-09 23:14:18] production.DEBUG: importFileAsImportJob: JSON "/import/config.json"
[2026-03-09 23:14:18] production.DEBUG: JSON says the flow is "eb"
[2026-03-09 23:14:18] production.DEBUG: Refresh unique instance identifier: d31c75d0-2d45-4e40-a473-62be2ef34a25
[2026-03-09 23:14:18] production.DEBUG: Saved import job with key "d9500c43-57ba-445d-8594-791bc907c532" to disk.
[2026-03-09 23:14:18] production.DEBUG: Created new import job with key "d9500c43-57ba-445d-8594-791bc907c532"
[2026-03-09 23:14:18] production.DEBUG: Saved import job with key "d9500c43-57ba-445d-8594-791bc907c532" to disk.
[2026-03-09 23:14:18] production.DEBUG: Saved import job with key "d9500c43-57ba-445d-8594-791bc907c532" to disk.
[2026-03-09 23:14:18] production.DEBUG: Saved import job with key "d9500c43-57ba-445d-8594-791bc907c532" to disk.
[2026-03-09 23:14:18] production.DEBUG: [develop/2026-03-09] Now in App\Services\Shared\Configuration\Configuration::updateDateRange
[2026-03-09 23:14:18] production.DEBUG: Range is partial.
[2026-03-09 23:14:18] production.DEBUG: dateNotBefore is now "2026-03-08"
[2026-03-09 23:14:18] production.DEBUG: dateRangeNotAfterUnit is "", dateNotAfter will be empty.
[2026-03-09 23:14:18] production.DEBUG: dateNotAfter is now ""
[2026-03-09 23:14:18] production.DEBUG: Saved import job with key "d9500c43-57ba-445d-8594-791bc907c532" to disk.
[2026-03-09 23:14:18] production.DEBUG: Now in parseImportJob("d9500c43-57ba-445d-8594-791bc907c532")
[2026-03-09 23:14:18] production.DEBUG: No asset accounts or liabilities found, will collect them now.
[2026-03-09 23:14:18] production.DEBUG: Now in App\Repository\ImportJob\ImportJobRepository::getApplicationAccounts
[2026-03-09 23:14:18] production.DEBUG: No base url in getBaseUrl() session, will return config variable.
[2026-03-09 23:14:18] production.DEBUG: App\Services\Shared\Authentication\SecretManager::getAccessToken
[2026-03-09 23:14:18] production.DEBUG: No access token in session, will return header or config variable.
[2026-03-09 23:14:18] production.DEBUG: Access token in header is empty, will be ignored.
[2026-03-09 23:14:18] production.DEBUG: Access token is null, use config instead.
[2026-03-09 23:14:18] production.DEBUG: Fetching asset accounts from Firefly III. {"url":"https://firefly.+.org"}
[2026-03-09 23:14:18] production.DEBUG: Fetched 4 asset accounts.
[2026-03-09 23:14:18] production.DEBUG: Fetching liability accounts from Firefly III. {"url":"https://firefly.+.org"}
[2026-03-09 23:14:18] production.DEBUG: Fetched 0 liability accounts.
[2026-03-09 23:14:18] production.DEBUG: No base url in getBaseUrl() session, will return config variable.
[2026-03-09 23:14:18] production.DEBUG: App\Services\Shared\Authentication\SecretManager::getAccessToken
[2026-03-09 23:14:18] production.DEBUG: No access token in session, will return header or config variable.
[2026-03-09 23:14:18] production.DEBUG: Access token in header is empty, will be ignored.
[2026-03-09 23:14:18] production.DEBUG: Access token is null, use config instead.
[2026-03-09 23:14:18] production.DEBUG: Now in flow("eb")
[2026-03-09 23:14:18] production.DEBUG: [develop/2026-03-09] Now in App\Services\EnableBanking\Validation\NewJobDataCollector::collectAccounts
[2026-03-09 23:14:18] production.DEBUG: Refresh unique instance identifier: bed41e19-2229-4f69-9e17-bd40c3b66e06
[2026-03-09 23:14:18] production.DEBUG: Have 1 session(s) for import.
[2026-03-09 23:14:18] production.DEBUG: Have NO accounts in cache.
[2026-03-09 23:14:18] production.DEBUG: Enable Banking authenticatedGet(https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992)
[2026-03-09 23:14:18] production.DEBUG: Generating Enable Banking JWT token
[2026-03-09 23:14:18] production.DEBUG: No Enable Banking App ID in session, will return config variable.
[2026-03-09 23:14:18] production.DEBUG: No Enable Banking private key in session, will return config variable.
[2026-03-09 23:14:18] production.DEBUG: The key is already base64, format it into PEM and return.
[2026-03-09 23:14:18] production.DEBUG: Enable Banking JWT token generated successfully
[2026-03-09 23:14:18] production.ERROR: Enable Banking API error: Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{"code":401,"message":"kid is empty"}

[2026-03-09 23:14:18] production.ERROR: Response body: {"code":401,"message":"kid is empty"}
[2026-03-09 23:14:18] production.ERROR: Enable Banking API error: Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{"code":401,"message":"kid is empty"}
{"exception":"[object] (App\\Exceptions\\ImporterErrorException(code: 0): Enable Banking API error: Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{\"code\":401,\"message\":\"kid is empty\"}
at /var/www/html/app/Services/EnableBanking/Validation/NewJobDataCollector.php:108)
[stacktrace]
#0 /var/www/html/app/Repository/ImportJob/ImportJobRepository.php(220): App\\Services\\EnableBanking\\Validation\\NewJobDataCollector->collectAccounts()
#1 /var/www/html/app/Console/AutoImports.php(247): App\\Repository\\ImportJob\\ImportJobRepository->parseImportJob()
#2 /var/www/html/app/Console/Commands/Import.php(111): App\\Console\\Commands\\Import->importFileAsImportJob()
#3 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(36): App\\Console\\Commands\\Import->handle()
#4 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Util.php(43): Illuminate\\Container\\BoundMethod::{closure:Illuminate\\Container\\BoundMethod::call():35}()
#5 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(96): Illuminate\\Container\\Util::unwrapIfClosure()
#6 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(35): Illuminate\\Container\\BoundMethod::callBoundMethod()
#7 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Container.php(799): Illuminate\\Container\\BoundMethod::call()
#8 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(211): Illuminate\\Container\\Container->call()
#9 /var/www/html/vendor/symfony/console/Command/Command.php(341): Illuminate\\Console\\Command->execute()
#10 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(180): Symfony\\Component\\Console\\Command\\Command->run()
#11 /var/www/html/vendor/symfony/console/Application.php(1117): Illuminate\\Console\\Command->run()
#12 /var/www/html/vendor/symfony/console/Application.php(356): Symfony\\Component\\Console\\Application->doRunCommand()
#13 /var/www/html/vendor/symfony/console/Application.php(195): Symfony\\Component\\Console\\Application->doRun()
#14 /var/www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(198): Symfony\\Component\\Console\\Application->run()
#15 /var/www/html/artisan(35): Illuminate\\Foundation\\Console\\Kernel->handle()
#16 {main}

[previous exception] [object] (App\\Exceptions\\ImporterHttpException(code: 0): Enable Banking API error: Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{\"code\":401,\"message\":\"kid is empty\"}
at /var/www/html/app/Services/EnableBanking/Request/Request.php:136)
[stacktrace]
#0 /var/www/html/app/Services/EnableBanking/Request/GetAccountsRequest.php(52): App\\Services\\EnableBanking\\Request\\Request->authenticatedGet()
#1 /var/www/html/app/Services/EnableBanking/Validation/NewJobDataCollector.php(106): App\\Services\\EnableBanking\\Request\\GetAccountsRequest->get()
#2 /var/www/html/app/Repository/ImportJob/ImportJobRepository.php(220): App\\Services\\EnableBanking\\Validation\\NewJobDataCollector->collectAccounts()
#3 /var/www/html/app/Console/AutoImports.php(247): App\\Repository\\ImportJob\\ImportJobRepository->parseImportJob()
#4 /var/www/html/app/Console/Commands/Import.php(111): App\\Console\\Commands\\Import->importFileAsImportJob()
#5 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(36): App\\Console\\Commands\\Import->handle()
#6 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Util.php(43): Illuminate\\Container\\BoundMethod::{closure:Illuminate\\Container\\BoundMethod::call():35}()
#7 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(96): Illuminate\\Container\\Util::unwrapIfClosure()
#8 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(35): Illuminate\\Container\\BoundMethod::callBoundMethod()
#9 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Container.php(799): Illuminate\\Container\\BoundMethod::call()
#10 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(211): Illuminate\\Container\\Container->call()
#11 /var/www/html/vendor/symfony/console/Command/Command.php(341): Illuminate\\Console\\Command->execute()
#12 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(180): Symfony\\Component\\Console\\Command\\Command->run()
#13 /var/www/html/vendor/symfony/console/Application.php(1117): Illuminate\\Console\\Command->run()
#14 /var/www/html/vendor/symfony/console/Application.php(356): Symfony\\Component\\Console\\Application->doRunCommand()
#15 /var/www/html/vendor/symfony/console/Application.php(195): Symfony\\Component\\Console\\Application->doRun()
#16 /var/www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(198): Symfony\\Component\\Console\\Application->run()
#17 /var/www/html/artisan(35): Illuminate\\Foundation\\Console\\Kernel->handle()
#18 {main}

[previous exception] [object] (GuzzleHttp\\Exception\\ClientException(code: 401): Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{\"code\":401,\"message\":\"kid is empty\"}
at /var/www/html/vendor/guzzlehttp/guzzle/src/Exception/RequestException.php:111)
[stacktrace]
#0 /var/www/html/vendor/guzzlehttp/guzzle/src/Middleware.php(72): GuzzleHttp\\Exception\\RequestException::create()
#1 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(209): GuzzleHttp\\Middleware::{closure:{closure:{closure:GuzzleHttp\\Middleware::httpErrors():60}:61}:67}()
#2 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(158): GuzzleHttp\\Promise\\Promise::callHandler()
#3 /var/www/html/vendor/guzzlehttp/promises/src/TaskQueue.php(52): GuzzleHttp\\Promise\\Promise::{closure:GuzzleHttp\\Promise\\Promise::settle():156}()
#4 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(251): GuzzleHttp\\Promise\\TaskQueue->run()
#5 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(227): GuzzleHttp\\Promise\\Promise->invokeWaitFn()
#6 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(272): GuzzleHttp\\Promise\\Promise->waitIfPending()
#7 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(229): GuzzleHttp\\Promise\\Promise->invokeWaitList()
#8 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(69): GuzzleHttp\\Promise\\Promise->waitIfPending()
#9 /var/www/html/vendor/guzzlehttp/guzzle/src/Client.php(189): GuzzleHttp\\Promise\\Promise->wait()
#10 /var/www/html/app/Services/EnableBanking/Request/Request.php(127): GuzzleHttp\\Client->request()
#11 /var/www/html/app/Services/EnableBanking/Request/GetAccountsRequest.php(52): App\\Services\\EnableBanking\\Request\\Request->authenticatedGet()
#12 /var/www/html/app/Services/EnableBanking/Validation/NewJobDataCollector.php(106): App\\Services\\EnableBanking\\Request\\GetAccountsRequest->get()
#13 /var/www/html/app/Repository/ImportJob/ImportJobRepository.php(220): App\\Services\\EnableBanking\\Validation\\NewJobDataCollector->collectAccounts()
#14 /var/www/html/app/Console/AutoImports.php(247): App\\Repository\\ImportJob\\ImportJobRepository->parseImportJob()
#15 /var/www/html/app/Console/Commands/Import.php(111): App\\Console\\Commands\\Import->importFileAsImportJob()
#16 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(36): App\\Console\\Commands\\Import->handle()
#17 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Util.php(43): Illuminate\\Container\\BoundMethod::{closure:Illuminate\\Container\\BoundMethod::call():35}()
#18 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(96): Illuminate\\Container\\Util::unwrapIfClosure()
#19 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(35): Illuminate\\Container\\BoundMethod::callBoundMethod()
#20 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Container.php(799): Illuminate\\Container\\BoundMethod::call()
#21 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(211): Illuminate\\Container\\Container->call()
#22 /var/www/html/vendor/symfony/console/Command/Command.php(341): Illuminate\\Console\\Command->execute()
#23 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(180): Symfony\\Component\\Console\\Command\\Command->run()
#24 /var/www/html/vendor/symfony/console/Application.php(1117): Illuminate\\Console\\Command->run()
#25 /var/www/html/vendor/symfony/console/Application.php(356): Symfony\\Component\\Console\\Application->doRunCommand()
#26 /var/www/html/vendor/symfony/console/Application.php(195): Symfony\\Component\\Console\\Application->doRun()
#27 /var/www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(198): Symfony\\Component\\Console\\Application->run()
#28 /var/www/html/artisan(35): Illuminate\\Foundation\\Console\\Kernel->handle()
#29 {main}
"}

App\Exceptions\ImporterErrorException

Enable Banking API error: Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{"code":401,"message":"kid is empty"}

at app/Services/EnableBanking/Validation/NewJobDataCollector.php:108
104▕ try {
105▕ /** @var AccountsResponse $response */
106▕ $response = $request->get();
107▕ } catch (ImporterHttpException $e) {
➜ 108▕ throw new ImporterErrorException($e->getMessage(), 0, $e);
109▕ }
110▕
111▕ $total = count($response);
112▕ Log::debug(sprintf('Found %d Enable Banking accounts.', $total));

1 app/Services/EnableBanking/Request/Request.php:136
App\Exceptions\ImporterHttpException::("Enable Banking API error: Client error: `GET https://api.enablebanking.com/sessions/9e2f2636-51f7-4b4b-8380-ac9c4f3a9992` resulted in a `401 Unauthorized` response:
{"code":401,"message":"kid is empty"}
")
�[2m+11 vendor frames �[22m

13 app/Services/EnableBanking/Request/Request.php:127
GuzzleHttp\Client::request()

Before trying auto import, I created a new config.json with docker develop-20260309.

Federico

3 replies

JC5 Mar 10, 2026
Maintainer

That happens when ENABLE_BANKING_APP_ID is empty.

Ilpredatore Mar 10, 2026
Author

Sorry for my mistake!!!
Now it's working!!! Thank you very much!

JC5 Mar 10, 2026
Maintainer

Not a problem, glad I could help! In the next release, leaving it empty will also give an error :)

Ilpredatore · 2026-03-11T21:18:49Z

Ilpredatore
Mar 11, 2026
Author

Good Evening @JC5, today i have a new problem.
I use script import a couple of time but it seems tha EB block my access:

[2026-03-11 22:12:26] production.DEBUG: Generating Enable Banking JWT token
[2026-03-11 22:12:26] production.DEBUG: No Enable Banking App ID in session, will return config variable.
[2026-03-11 22:12:26] production.DEBUG: No Enable Banking private key in session, will return config variable.
[2026-03-11 22:12:26] production.DEBUG: The key is already base64, format it into PEM and return.
[2026-03-11 22:12:26] production.DEBUG: Enable Banking JWT token generated successfully
[2026-03-11 22:12:28] production.ERROR: Enable Banking API error: Client error: `GET https://api.enablebanking.com/accounts/v/details` resulted in a `429 Too Many Requests` response:
{"code":429,"message":"Superato il numero massimo di accessi","detail":{"message":"Superato il numero massimo di accessi (truncated...)

[2026-03-11 22:12:28] production.ERROR: Response body: {"code":429,"message":"Superato il numero massimo di accessi","detail":{"message":"Superato il numero massimo di accessi","error_name":"RateLimitException","error_data":{}},"error":"ASPSP_RATE_LIMIT_EXCEEDED"}
[2026-03-11 22:12:28] production.ERROR: Enable Banking API error: Client error: `GET https://api.enablebanking.com/accounts/vdetails` resulted in a `429 Too Many Requests` response:
{"code":429,"message":"Superato il numero massimo di accessi","detail":{"message":"Superato il numero massimo di accessi (truncated...)
{"exception":"[object] (App\\Exceptions\\ImporterHttpException(code: 0): Enable Banking API error: Client error: `GET https://api.enablebanking.com/accounts/vdetails` resulted in a `429 Too Many Requests` response:
{\"code\":429,\"message\":\"Superato il numero massimo di accessi\",\"detail\":{\"message\":\"Superato il numero massimo di accessi (truncated...)
at /var/www/html/app/Services/EnableBanking/Request/Request.php:136)
[stacktrace]
#0 /var/www/html/app/Services/EnableBanking/Request/GetAccountDetailsRequest.php(52): App\\Services\\EnableBanking\\Request\\Request->authenticatedGet()
#1 /var/www/html/app/Services/EnableBanking/Validation/NewJobDataCollector.php(125): App\\Services\\EnableBanking\\Request\\GetAccountDetailsRequest->get()
#2 /var/www/html/app/Repository/ImportJob/ImportJobRepository.php(220): App\\Services\\EnableBanking\\Validation\\NewJobDataCollector->collectAccounts()
#3 /var/www/html/app/Console/AutoImports.php(249): App\\Repository\\ImportJob\\ImportJobRepository->parseImportJob()
#4 /var/www/html/app/Console/Commands/Import.php(111): App\\Console\\Commands\\Import->importFileAsImportJob()
#5 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(36): App\\Console\\Commands\\Import->handle()
#6 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Util.php(43): Illuminate\\Container\\BoundMethod::{closure:Illuminate\\Container\\BoundMethod::call():35}()
#7 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(96): Illuminate\\Container\\Util::unwrapIfClosure()
#8 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(35): Illuminate\\Container\\BoundMethod::callBoundMethod()
#9 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Container.php(799): Illuminate\\Container\\BoundMethod::call()
#10 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(211): Illuminate\\Container\\Container->call()
#11 /var/www/html/vendor/symfony/console/Command/Command.php(341): Illuminate\\Console\\Command->execute()
#12 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(180): Symfony\\Component\\Console\\Command\\Command->run()
#13 /var/www/html/vendor/symfony/console/Application.php(1117): Illuminate\\Console\\Command->run()
#14 /var/www/html/vendor/symfony/console/Application.php(356): Symfony\\Component\\Console\\Application->doRunCommand()
#15 /var/www/html/vendor/symfony/console/Application.php(195): Symfony\\Component\\Console\\Application->doRun()
#16 /var/www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(198): Symfony\\Component\\Console\\Application->run()
#17 /var/www/html/artisan(35): Illuminate\\Foundation\\Console\\Kernel->handle()
#18 {main}

[previous exception] [object] (GuzzleHttp\\Exception\\ClientException(code: 429): Client error: `GET https://api.enablebanking.com/accounts/v/details` resulted in a `429 Too Many Requests` response:
{\"code\":429,\"message\":\"Superato il numero massimo di accessi\",\"detail\":{\"message\":\"Superato il numero massimo di accessi (truncated...)
at /var/www/html/vendor/guzzlehttp/guzzle/src/Exception/RequestException.php:111)
[stacktrace]
#0 /var/www/html/vendor/guzzlehttp/guzzle/src/Middleware.php(72): GuzzleHttp\\Exception\\RequestException::create()
#1 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(209): GuzzleHttp\\Middleware::{closure:{closure:{closure:GuzzleHttp\\Middleware::httpErrors():60}:61}:67}()
#2 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(158): GuzzleHttp\\Promise\\Promise::callHandler()
#3 /var/www/html/vendor/guzzlehttp/promises/src/TaskQueue.php(52): GuzzleHttp\\Promise\\Promise::{closure:GuzzleHttp\\Promise\\Promise::settle():156}()
#4 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(251): GuzzleHttp\\Promise\\TaskQueue->run()
#5 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(227): GuzzleHttp\\Promise\\Promise->invokeWaitFn()
#6 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(272): GuzzleHttp\\Promise\\Promise->waitIfPending()
#7 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(229): GuzzleHttp\\Promise\\Promise->invokeWaitList()
#8 /var/www/html/vendor/guzzlehttp/promises/src/Promise.php(69): GuzzleHttp\\Promise\\Promise->waitIfPending()
#9 /var/www/html/vendor/guzzlehttp/guzzle/src/Client.php(189): GuzzleHttp\\Promise\\Promise->wait()
#10 /var/www/html/app/Services/EnableBanking/Request/Request.php(127): GuzzleHttp\\Client->request()
#11 /var/www/html/app/Services/EnableBanking/Request/GetAccountDetailsRequest.php(52): App\\Services\\EnableBanking\\Request\\Request->authenticatedGet()
#12 /var/www/html/app/Services/EnableBanking/Validation/NewJobDataCollector.php(125): App\\Services\\EnableBanking\\Request\\GetAccountDetailsRequest->get()
#13 /var/www/html/app/Repository/ImportJob/ImportJobRepository.php(220): App\\Services\\EnableBanking\\Validation\\NewJobDataCollector->collectAccounts()
#14 /var/www/html/app/Console/AutoImports.php(249): App\\Repository\\ImportJob\\ImportJobRepository->parseImportJob()
#15 /var/www/html/app/Console/Commands/Import.php(111): App\\Console\\Commands\\Import->importFileAsImportJob()
#16 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(36): App\\Console\\Commands\\Import->handle()
#17 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Util.php(43): Illuminate\\Container\\BoundMethod::{closure:Illuminate\\Container\\BoundMethod::call():35}()
#18 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(96): Illuminate\\Container\\Util::unwrapIfClosure()
#19 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/BoundMethod.php(35): Illuminate\\Container\\BoundMethod::callBoundMethod()
#20 /var/www/html/vendor/laravel/framework/src/Illuminate/Container/Container.php(799): Illuminate\\Container\\BoundMethod::call()
#21 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(211): Illuminate\\Container\\Container->call()
#22 /var/www/html/vendor/symfony/console/Command/Command.php(341): Illuminate\\Console\\Command->execute()
#23 /var/www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(180): Symfony\\Component\\Console\\Command\\Command->run()
#24 /var/www/html/vendor/symfony/console/Application.php(1117): Illuminate\\Console\\Command->run()
#25 /var/www/html/vendor/symfony/console/Application.php(356): Symfony\\Component\\Console\\Application->doRunCommand()
#26 /var/www/html/vendor/symfony/console/Application.php(195): Symfony\\Component\\Console\\Application->doRun()
#27 /var/www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(198): Symfony\\Component\\Console\\Application->run()
#28 /var/www/html/artisan(35): Illuminate\\Foundation\\Console\\Kernel->handle()
#29 {main}
"}

App\Exceptions\ImporterHttpException

Enable Banking API error: Client error: `GET https://api.enablebanking.com/accounts/v/details` resulted in a `429 Too Many Requests` response:
{"code":429,"message":"Superato il numero massimo di accessi","detail":{"message":"Superato il numero massimo di accessi (truncated...)

at app/Services/EnableBanking/Request/Request.php:136
132▕ $body = (string) $e->getResponse()->getBody();
133▕ Log::error(sprintf('Response body: %s', $body));
134▕ }
135▕
➜ 136▕ throw new ImporterHttpException(sprintf('Enable Banking API error: %s', $e->getMessage()), 0, $e);
137▕ }
138▕
139▕ $body = (string) $res->getBody();
140▕ Log::debug(sprintf('Enable Banking raw response: %s', $body));

�[2m+11 vendor frames �[22m

12 app/Services/EnableBanking/Request/Request.php:127
GuzzleHttp\Client::request()

13 app/Services/EnableBanking/Request/GetAccountDetailsRequest.php:52
App\Services\EnableBanking\Request\Request::authenticatedGet()

1 reply

JC5 Mar 12, 2026
Maintainer

It seems so. I can't fix that, sorry :D.

Firefly III

Enable Banking use of environment variables #11891

Uh oh!

Ilpredatore Mar 6, 2026

Replies: 6 comments · 20 replies

Uh oh!

Uh oh!

Ilpredatore Mar 6, 2026 Author

Uh oh!

JC5 Mar 6, 2026 Maintainer

Uh oh!

Uh oh!

Ilpredatore Mar 6, 2026 Author

Uh oh!

Triserden Mar 8, 2026

Uh oh!

JC5 Mar 9, 2026 Maintainer

Uh oh!

JC5 Mar 9, 2026 Maintainer

Uh oh!

Triserden Mar 10, 2026

Uh oh!

Akinator31 Mar 9, 2026

Uh oh!

Akinator31 Mar 9, 2026

Uh oh!

Ilpredatore Mar 9, 2026 Author

Uh oh!

JC5 Mar 9, 2026 Maintainer

Uh oh!

Ilpredatore Mar 9, 2026 Author

Uh oh!

Uh oh!

JC5 Mar 9, 2026 Maintainer

Uh oh!

Ilpredatore Mar 9, 2026 Author

Uh oh!

JC5 Mar 10, 2026 Maintainer

Uh oh!

Ilpredatore Mar 10, 2026 Author

Uh oh!

JC5 Mar 10, 2026 Maintainer

Uh oh!

Ilpredatore Mar 11, 2026 Author

Uh oh!

JC5 Mar 12, 2026 Maintainer

Ilpredatore
Mar 6, 2026

Replies: 6 comments 20 replies

Ilpredatore
Mar 6, 2026
Author

JC5 Mar 6, 2026
Maintainer

Ilpredatore
Mar 6, 2026
Author

Triserden
Mar 8, 2026

JC5 Mar 9, 2026
Maintainer

JC5 Mar 9, 2026
Maintainer

Akinator31
Mar 9, 2026

Ilpredatore Mar 9, 2026
Author

JC5 Mar 9, 2026
Maintainer

Ilpredatore Mar 9, 2026
Author

JC5 Mar 9, 2026
Maintainer

Ilpredatore
Mar 9, 2026
Author

JC5 Mar 10, 2026
Maintainer

Ilpredatore Mar 10, 2026
Author

JC5 Mar 10, 2026
Maintainer

Ilpredatore
Mar 11, 2026
Author

JC5 Mar 12, 2026
Maintainer