Thanks for such a quick reply!
Apologies for not mentioning where I was running into the issue; I’m getting the error when going through the authorization flow, in-browser, before what would normally be the Zoom prompt asking if I want to authorize the app for the given scopes.
Here’s a specific example of a request (in-browser) that’s giving me the error:
https://zoom.us/oauth/authorize?client_id=s0fCHWtQTyegiWoaLuT6ZA&redirect_uri=https%3A%2F%2Fapp.anatomy.one%2Fusers%2Fauth%2Fzoom%2Fcallback&response_type=code&scope=meeting%3Aread%2Cmeeting%3Awrite%2Crecording%3Aread%2Crecording%3Awrite%2Cuser%3Aread%2Cuser%3Awrite&state=0b61d22af4ee5fc9c5365efab2e9e661fd55e64c32d4f5d3
Which, URI decoded, is:
https://zoom.us/oauth/authorize?client_id=s0fCHWtQTyegiWoaLuT6ZA&redirect_uri=https://app.anatomy.one/users/auth/zoom/callback&response_type=code&scope=meeting:read,meeting:write,recording:read,recording:write,user:read,user:write&state=0b61d22af4ee5fc9c5365efab2e9e661fd55e64c32d4f5d3
And it’s just a GET
from the browser, so I imagine the headers aren’t of much interest, but here’s what I see in the Network
tab in Firefox, just in case:
Accept : text/html,application/xhtml+xm…plication/xml;q=0.9,*/*;q=0.8
Accept-Encoding : gzip, deflate, br
Accept-Language : en-US,en;q=0.5
Cache-Control : no-cache
Connection : keep-alive
Cookie : cred=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX; __zlcmid=XXXXXXXXXXXXXX
Host : zoom.us
Pragma : no-cache
Upgrade-Insecure-Requests : 1
User-Agent : Mozilla/5.0 (X11; Ubuntu; Linu…) Gecko/20100101 Firefox/69.0
And to your publishable URL question: I’m using OmniAuth inside of Rails to handle OAuth, so it’s responsible for building / redirecting to this URL. This was functioning just fine before though, and I’m pretty sure the keys are the only thing that have changed. I guess that and the fact that the OAuth app is now not tied to my Zoom account (which I’m attempting to authorize with), but even then, my client (who does own the new app) is getting the same error code (4,700
), just with a slightly different message:
Empty scope (either the client or the user is not allowed the requested scopes) (4,700)
Thanks so much for your help! Please let me know if I can provide any more detail!