Hi team,
I’m Peter and developing Zoom Marketplace App.
I have an issue for using the get zoom meeting API even the token has a meeting:read scope.
What I found is that only a host user can access the API, not other role. (e.g. participant, panelist…)
Here is the response body.
{
code: 'ERR_BAD_REQUEST',
config: {
transitional: {
silentJSONParsing: true,
forcedJSONParsing: true,
clarifyTimeoutError: false
},
adapter: [ 'xhr', 'http' ],
transformRequest: [ [Function: transformRequest] ],
transformResponse: [ [Function: transformResponse] ],
timeout: 0,
xsrfCookieName: 'XSRF-TOKEN',
xsrfHeaderName: 'X-XSRF-TOKEN',
maxContentLength: -1,
maxBodyLength: -1,
env: { FormData: [Function], Blob: [class Blob] },
validateStatus: [Function: validateStatus],
headers: AxiosHeaders {
Accept: 'application/json, text/plain, */*',
Authorization: 'Bearer eyJzdiI6IjAwMDAwMSIsImFsZyI6IkhTNTEyIiwidiI6IjIuMCIsImtpZCI6ImQ2Y2YyNzQ5LTFlOTktNDMyYS05YmIyLTM3MmFiMDIxMGNiNyJ9.eyJ2ZXIiOjksImF1aWQiOiJlYzViODJkOWI3YmU4MzliZmQxZTNkMTdjMzBlNjY5MSIsImNvZGUiOiJKbDBibHB0UFF0U1BGa0dsSkVkVDNDbC1JSE5kQjI5SFEiLCJpc3MiOiJ6bTpjaWQ6U2tqSVRjSDZRM1d1U2w5VVBHdHV3IiwiZ25vIjowLCJ0eXBlIjowLCJ0aWQiOjAsImF1ZCI6Imh0dHBzOi8vb2F1dGguem9vbS51cyIsInVpZCI6Ing4LWtDM2F3UW5TZ2x5ZVdqZHZlLVEiLCJuYmYiOjE2ODU2NzE5OTgsImV4cCI6MTY4NTY3NTU5OCwiaWF0IjoxNjg1NjcxOTk4LCJhaWQiOiJWYUVDS09vbVRFV1Z0azNzd3NONS1RIn0.I75uYxMjQWEqy_-Qa4SrrnLg9MmO4W7kWAAq3AhsgChAHegY3Zm6_MAXSQviTw6l9SViuvrWJTxJIukI3rKWPw',
'User-Agent': 'axios/1.2.2',
'Accept-Encoding': 'gzip, compress, deflate, br'
},
baseURL: 'https://api.zoom.us/',
method: 'get',
url: '/v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D',
data: undefined
},
request: <ref *1> ClientRequest {
_events: [Object: null prototype] {
abort: [Function (anonymous)],
aborted: [Function (anonymous)],
connect: [Function (anonymous)],
error: [Function (anonymous)],
socket: [Function (anonymous)],
timeout: [Function (anonymous)],
finish: [Function: requestOnFinish]
},
_eventsCount: 7,
_maxListeners: undefined,
outputData: [],
outputSize: 0,
writable: true,
destroyed: false,
_last: true,
chunkedEncoding: false,
shouldKeepAlive: false,
maxRequestsOnConnectionReached: false,
_defaultKeepAlive: true,
useChunkedEncodingByDefault: false,
sendDate: false,
_removedConnection: false,
_removedContLen: false,
_removedTE: false,
strictContentLength: false,
_contentLength: 0,
_hasBody: true,
_trailer: '',
finished: true,
_headerSent: true,
_closed: false,
socket: TLSSocket {
_tlsOptions: [Object],
_secureEstablished: true,
_securePending: false,
_newSessionPending: false,
_controlReleased: true,
secureConnecting: false,
_SNICallback: null,
servername: 'api.zoom.us',
alpnProtocol: false,
authorized: true,
authorizationError: null,
encrypted: true,
_events: [Object: null prototype],
_eventsCount: 10,
connecting: false,
_hadError: false,
_parent: null,
_host: 'api.zoom.us',
_closeAfterHandlingError: false,
_readableState: [ReadableState],
_maxListeners: undefined,
_writableState: [WritableState],
allowHalfOpen: false,
_sockname: null,
_pendingData: null,
_pendingEncoding: '',
server: undefined,
_server: null,
ssl: [TLSWrap],
_requestCert: true,
_rejectUnauthorized: true,
parser: null,
_httpMessage: [Circular *1],
[Symbol(res)]: [TLSWrap],
[Symbol(verified)]: true,
[Symbol(pendingSession)]: null,
[Symbol(async_id_symbol)]: 21084,
[Symbol(kHandle)]: [TLSWrap],
[Symbol(lastWriteQueueSize)]: 0,
[Symbol(timeout)]: null,
[Symbol(kBuffer)]: null,
[Symbol(kBufferCb)]: null,
[Symbol(kBufferGen)]: null,
[Symbol(kCapture)]: false,
[Symbol(kSetNoDelay)]: false,
[Symbol(kSetKeepAlive)]: true,
[Symbol(kSetKeepAliveInitialDelay)]: 60,
[Symbol(kBytesRead)]: 0,
[Symbol(kBytesWritten)]: 0,
[Symbol(connect-options)]: [Object]
},
_header: 'GET /v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D HTTP/1.1\r\n' +
'Accept: application/json, text/plain, */*\r\n' +
'Authorization: Bearer eyJzdiI6IjAwMDAwMSIsImFsZyI6IkhTNTEyIiwidiI6IjIuMCIsImtpZCI6ImQ2Y2YyNzQ5LTFlOTktNDMyYS05YmIyLTM3MmFiMDIxMGNiNyJ9.eyJ2ZXIiOjksImF1aWQiOiJlYzViODJkOWI3YmU4MzliZmQxZTNkMTdjMzBlNjY5MSIsImNvZGUiOiJKbDBibHB0UFF0U1BGa0dsSkVkVDNDbC1JSE5kQjI5SFEiLCJpc3MiOiJ6bTpjaWQ6U2tqSVRjSDZRM1d1U2w5VVBHdHV3IiwiZ25vIjowLCJ0eXBlIjowLCJ0aWQiOjAsImF1ZCI6Imh0dHBzOi8vb2F1dGguem9vbS51cyIsInVpZCI6Ing4LWtDM2F3UW5TZ2x5ZVdqZHZlLVEiLCJuYmYiOjE2ODU2NzE5OTgsImV4cCI6MTY4NTY3NTU5OCwiaWF0IjoxNjg1NjcxOTk4LCJhaWQiOiJWYUVDS09vbVRFV1Z0azNzd3NONS1RIn0.I75uYxMjQWEqy_-Qa4SrrnLg9MmO4W7kWAAq3AhsgChAHegY3Zm6_MAXSQviTw6l9SViuvrWJTxJIukI3rKWPw\r\n' +
'User-Agent: axios/1.2.2\r\n' +
'Accept-Encoding: gzip, compress, deflate, br\r\n' +
'Host: api.zoom.us\r\n' +
'Connection: close\r\n' +
'\r\n',
_keepAliveTimeout: 0,
_onPendingData: [Function: nop],
agent: Agent {
_events: [Object: null prototype],
_eventsCount: 2,
_maxListeners: undefined,
defaultPort: 443,
protocol: 'https:',
options: [Object: null prototype],
requests: [Object: null prototype] {},
sockets: [Object: null prototype],
freeSockets: [Object: null prototype] {},
keepAliveMsecs: 1000,
keepAlive: false,
maxSockets: Infinity,
maxFreeSockets: 256,
scheduling: 'lifo',
maxTotalSockets: Infinity,
totalSocketCount: 2,
maxCachedSessions: 100,
_sessionCache: [Object],
[Symbol(kCapture)]: false
},
socketPath: undefined,
method: 'GET',
maxHeaderSize: undefined,
insecureHTTPParser: undefined,
path: '/v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D',
_ended: true,
res: IncomingMessage {
_readableState: [ReadableState],
_events: [Object: null prototype],
_eventsCount: 4,
_maxListeners: undefined,
socket: [TLSSocket],
httpVersionMajor: 1,
httpVersionMinor: 1,
httpVersion: '1.1',
complete: true,
rawHeaders: [Array],
rawTrailers: [],
aborted: false,
upgrade: false,
url: '',
method: null,
statusCode: 403,
statusMessage: 'Forbidden',
client: [TLSSocket],
_consuming: false,
_dumped: false,
req: [Circular *1],
responseUrl: 'https://api.zoom.us/v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D',
redirects: [],
[Symbol(kCapture)]: false,
[Symbol(kHeaders)]: [Object],
[Symbol(kHeadersCount)]: 54,
[Symbol(kTrailers)]: null,
[Symbol(kTrailersCount)]: 0
},
aborted: false,
timeoutCb: null,
upgradeOrConnect: false,
parser: null,
maxHeadersCount: null,
reusedSocket: false,
host: 'api.zoom.us',
protocol: 'https:',
_redirectable: Writable {
_writableState: [WritableState],
_events: [Object: null prototype],
_eventsCount: 3,
_maxListeners: undefined,
_options: [Object],
_ended: true,
_ending: true,
_redirectCount: 0,
_redirects: [],
_requestBodyLength: 0,
_requestBodyBuffers: [],
_onNativeResponse: [Function (anonymous)],
_currentRequest: [Circular *1],
_currentUrl: 'https://api.zoom.us/v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D',
[Symbol(kCapture)]: false
},
[Symbol(kCapture)]: false,
[Symbol(kBytesWritten)]: 0,
[Symbol(kEndCalled)]: true,
[Symbol(kNeedDrain)]: false,
[Symbol(corked)]: 0,
[Symbol(kOutHeaders)]: [Object: null prototype] {
accept: [Array],
authorization: [Array],
'user-agent': [Array],
'accept-encoding': [Array],
host: [Array]
},
[Symbol(errored)]: null,
[Symbol(kUniqueHeaders)]: null
},
response: {
status: 403,
statusText: 'Forbidden',
headers: AxiosHeaders {
date: 'Fri, 02 Jun 2023 02:13:20 GMT',
'content-type': 'application/json;charset=UTF-8',
'content-length': '94',
connection: 'close',
'x-zm-trackingid': 'v=2.0;clid=us06;rid=WEB_f5844b9622fa2c6e5269513e24c985e2',
'x-content-type-options': 'nosniff',
'cache-control': 'no-cache, no-store, must-revalidate, no-transform',
pragma: 'no-cache',
expires: 'Thu, 01 Jan 1970 00:00:00 GMT',
'set-cookie': [Array],
'x-zm-zoneid': 'VA2',
'cf-cache-status': 'DYNAMIC',
'report-to': '{"endpoints":[{"url":"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=mHlSraO1luuy11YSG02q%2F245E6%2BIvrScEn%2F%2F3kmPhlRqcHwEtL7tW9HJmM7lUEAaArbmHBrfoE0V0SyFFxqL%2BuW8CsZJNnJX7v81N%2BM9EtzaI0%2F2jzJ3TtklrLqw"}],"group":"cf-nel","max_age":604800}',
nel: '{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}',
server: 'cloudflare',
'cf-ray': '7d0c2d2b3d41c087-ICN',
'alt-svc': 'h3=":443"; ma=86400'
},
config: {
transitional: [Object],
adapter: [Array],
transformRequest: [Array],
transformResponse: [Array],
timeout: 0,
xsrfCookieName: 'XSRF-TOKEN',
xsrfHeaderName: 'X-XSRF-TOKEN',
maxContentLength: -1,
maxBodyLength: -1,
env: [Object],
validateStatus: [Function: validateStatus],
headers: [AxiosHeaders],
baseURL: 'https://api.zoom.us/',
method: 'get',
url: '/v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D',
data: undefined
},
request: <ref *1> ClientRequest {
_events: [Object: null prototype],
_eventsCount: 7,
_maxListeners: undefined,
outputData: [],
outputSize: 0,
writable: true,
destroyed: false,
_last: true,
chunkedEncoding: false,
shouldKeepAlive: false,
maxRequestsOnConnectionReached: false,
_defaultKeepAlive: true,
useChunkedEncodingByDefault: false,
sendDate: false,
_removedConnection: false,
_removedContLen: false,
_removedTE: false,
strictContentLength: false,
_contentLength: 0,
_hasBody: true,
_trailer: '',
finished: true,
_headerSent: true,
_closed: false,
socket: [TLSSocket],
_header: 'GET /v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D HTTP/1.1\r\n' +
'Accept: application/json, text/plain, */*\r\n' +
'Authorization: Bearer eyJzdiI6IjAwMDAwMSIsImFsZyI6IkhTNTEyIiwidiI6IjIuMCIsImtpZCI6ImQ2Y2YyNzQ5LTFlOTktNDMyYS05YmIyLTM3MmFiMDIxMGNiNyJ9.eyJ2ZXIiOjksImF1aWQiOiJlYzViODJkOWI3YmU4MzliZmQxZTNkMTdjMzBlNjY5MSIsImNvZGUiOiJKbDBibHB0UFF0U1BGa0dsSkVkVDNDbC1JSE5kQjI5SFEiLCJpc3MiOiJ6bTpjaWQ6U2tqSVRjSDZRM1d1U2w5VVBHdHV3IiwiZ25vIjowLCJ0eXBlIjowLCJ0aWQiOjAsImF1ZCI6Imh0dHBzOi8vb2F1dGguem9vbS51cyIsInVpZCI6Ing4LWtDM2F3UW5TZ2x5ZVdqZHZlLVEiLCJuYmYiOjE2ODU2NzE5OTgsImV4cCI6MTY4NTY3NTU5OCwiaWF0IjoxNjg1NjcxOTk4LCJhaWQiOiJWYUVDS09vbVRFV1Z0azNzd3NONS1RIn0.I75uYxMjQWEqy_-Qa4SrrnLg9MmO4W7kWAAq3AhsgChAHegY3Zm6_MAXSQviTw6l9SViuvrWJTxJIukI3rKWPw\r\n' +
'User-Agent: axios/1.2.2\r\n' +
'Accept-Encoding: gzip, compress, deflate, br\r\n' +
'Host: api.zoom.us\r\n' +
'Connection: close\r\n' +
'\r\n',
_keepAliveTimeout: 0,
_onPendingData: [Function: nop],
agent: [Agent],
socketPath: undefined,
method: 'GET',
maxHeaderSize: undefined,
insecureHTTPParser: undefined,
path: '/v2/meetings/Wx9cuag1QCupJ92hH1eKKA%253D%253D',
_ended: true,
res: [IncomingMessage],
aborted: false,
timeoutCb: null,
upgradeOrConnect: false,
parser: null,
maxHeadersCount: null,
reusedSocket: false,
host: 'api.zoom.us',
protocol: 'https:',
_redirectable: [Writable],
[Symbol(kCapture)]: false,
[Symbol(kBytesWritten)]: 0,
[Symbol(kEndCalled)]: true,
[Symbol(kNeedDrain)]: false,
[Symbol(corked)]: 0,
[Symbol(kOutHeaders)]: [Object: null prototype],
[Symbol(errored)]: null,
[Symbol(kUniqueHeaders)]: null
},
data: {
code: 403,
message: 'Authenticated user has not permitted access to the targeted resource.'
}
}
}
And I also found that the API /v2/meetings/{meetingId} and /v2/past_meetings/{meetingId} return same error.
