When I go to my list of Created Apps in the Marketplace, there are two apps: a JWT app and a Server-to-Server OAuth app. I created these nearly identical apps for my client, and am replacing the JWT app with a near-identical Server-to-Server OAuth app because JWT apps are being shut down by Zoom as of 9/1/2023.
These two apps make exactly one API call: a POST to
/v2/users/[user-id]/meetings to create a Zoom meeting. But the JWT app’s API Call Logs (reached by clicking the three dots next to the app in my list of “Created Apps” and choosing “View Call Logs”) show API calls that my two apps simply never, ever make. And yet, these logs are prefaced very specifically by the text “below are the Zoom Open API call logs generated by the apps you have developed”.
I am absolutely certain that neither of these apps are making some of the calls in these logs. There are many GETs and PATCHes to endpoints I don’t even recognize. Furthermore, the user-agent for the calls made by my “Created Apps” is always
axios/0.21.4; that makes sense - my app uses Axios for XHR requests. All of the calls I don’t recognize, however, have user-agents like
I suspect, but don’t know, that this user-agent is, in fact, the Zoom desktop client. And I suspect, but don’t know, that these unrecognized requests are being made by apps in my client’s list of “Added Apps” (third-party apps from the Marketplace that my client has installed).
But I don’t know that for sure, and I need to know that. Because I don’t want to delete my client’s JWT app (mandatory as of 9/1/2023) and suddenly have these mystery GETs and PATCHes fail because perhaps they’re being made by people in my client’s organization (their main account has many sub-accounts), who, somehow (???) are relying on the JWT app for authentication.
Has anyone else encountered this? Can someone from Zoom support shed some light here? Time is tight; I have to complete this migration by September 1 or have Zoom remove my client’s still-in-use JWT app. Thanks very much.