I am setting up an integration with Rainfocus to allow Zoom meetings and webinars to be created from their event management platform in our account.
I only want them to have access to Zoom meeting/Webinar data created from their platform, but not data from all meeting conducted on our Zoom account
Currently they are requesting:
meeting:write:admin
webinar:write:admin
user:read:admin
report:read:admin
Question;
What are the right scopes for allowing their platform to Create meetings in our account and collect user and reporting data from those meetings, without accessing all user data?
Welcome to the Developer Forum ! You’ll want to give read access for the user and report scopes and write access for creating meetings. Please see our OAuth help documentation which offer detailed explanation of the OAuth scopes
Apologies for the confusion, there is user: read but not admin: read scope. No user-level scopes for reports. Only account or admins apps can access report data.
Currently, the OAuth scopes do not support the kind of granularity where the App will only have access to Zoom meeting/Webinar data created from their platform. If granted the scope access, the App will have access to all meetings conducted on your Zoom account.