DocumentationCommerceTools

[PaaS only]{class="badge informative" title="Applies to Adobe Commerce on Cloud projects (Adobe-managed PaaS infrastructure) and on-premises projects only."}

ACP2E-4565: The Company GraphQL query returns “The current customer isn’t authorized” when the X-Adobe-Company header is used

Last update: Mon Apr 27 2026 00:00:00 GMT+0000 (Coordinated Universal Time)

CREATED FOR:

  • Experienced
  • Admin
  • Developer

The ACP2E-4565 patch fixes the issue where the Company GraphQL query returns the error “The current customer isn’t authorized” when both the X-Adobe-Company and Store headers were included in the request, even though the customer is correctly assigned to the specified company and store. This patch is available when the Quality Patches Tool (QPT) 1.1.78 is installed. The patch ID is ACP2E-4565. Please note that this issue is scheduled to be fixed in Adobe Commerce 2.4.9.

Affected products and versions

The patch is created for Adobe Commerce version:

  • Adobe Commerce (all deployment methods) 2.4.8-p3

Compatible with Adobe Commerce versions:

  • Adobe Commerce (all deployment methods) 2.4.7-p3
NOTE
The patch might become applicable to other versions with new Quality Patches Tool releases. To check if the patch is compatible with your Adobe Commerce version, update the magento/quality-patches package to the latest version and check the compatibility on the Quality Patches Tool: Search for patches page. Use the patch ID as a search keyword to locate the patch.

Issue

The Company GraphQL query returns ‘The current customer isn’t authorized’ when both the X‑Adobe‑Company and Store headers are included in the request, even though the customer is properly assigned to the specified company and store.

Steps to reproduce:

  1. Enable B2B company.

  2. Create an additional website, store, and store view.

  3. Create two companies (Company one and Company two).

  4. Create a user assigned to the second website.

  5. Assign both companies to the user.

  6. Execute the following GraphQL query with these headers:

    • X-Adobe-Company: MQ==
    • Store: storeview2
    code language-graphql 
    query Company {
  company {
    id
    legal_name
    name
  }
}

Expected results:

Company data is returned successfully.

Actual results:

The GraphQL response returns an authorization error:

{
    "errors": [
        {
            "message": "The current customer isn't authorized.",
            "extensions": {
                "category": "graphql-authorization"
            }
        }
    ]
}

Apply the patch

To apply individual patches, use the following links depending on your deployment method:

To learn more about Quality Patches Tool, refer to:

recommendation-more-help
c2d96e17-5179-455c-ad3a-e1697bb4e8c3