Refresh token request failing with 401

Hey @shane.zoom, can you share your app name and ID so I can look at the logs?

The App ID is in the url when on your App settings in the Zoom Ap Marketplace.

Can you elaborate on this, I am not sure what you mean.

Thanks,
Tommy

Hey, the app id is Removed

For the user account, what I meant was if the user needed to have certain privileges, maybe?

Thanks @shane.zoom,

I am seeing a lot of refresh failures, including a token being revoked.

Make sure you are using the most recent refresh token each time. It changes every time you refresh your access_token.

If you would like me to help assist / debug further, please schedule a call:

Thanks,
Tommy

Hey, booked a meeting with you today.

1 Like

See you then!

Thanks,
Tommy

Hey sorry had to reschedule as i thought it was at 4:30. Will talk with you tomorrow.

1 Like

See you tomorrow!

Thanks,
Tommy

Hey @shane.zoom,

We have identified the issue on our end related to the OAuth access_token validation nbf time. This will be fixed in our December release. JIRA: ZOOM-118009

Thanks for your patience,
Tommy

Cool. Great to hear. Thanks for the update.

1 Like

Happy to help! :slight_smile:

Thanks,
Tommy

Thanks Tommy for the fast support.

Weā€™ve also made some additions on our end to ensure that the OAUTH tokens are never invalid.

1 Like

Happy to help @roy!

Nice job! Let me know if there is anything else I can help with!

Thanks,
Tommy

hey @tommy
so for now OAuth token refreshing seems completely broken until the December release? Is there just a specific case which is broken or all OAuth refresh token is broken? Iā€™m completely unable to refresh the token.

If this is indeed the case, any chance to push this fix as a hotfix ?

is there any way to track ZOOM-118009 ?

Hey @alon, thanks for posting and using Zoom.

The refresh token flow is not completely broken, in a few cases the refresh timing is off.

What errors are you getting, I can help you get it working.

Thanks,
Tommy

iā€™m getting {"reason":"Invalid Token!","error":"invalid_request"}

Hey @alon,

Can you please provide the url, params, and headers you are sending.

Also when refreshing an access_token, a new refresh_token is returned and must always be stored updated each time you refresh.

Thanks,
Tommy

thank you @tommy I was missing refreshing the refresh_token as well!

1 Like

Happy to help! :slight_smile:

Thanks,
Tommy

Hi @tommy

I too am getting a 401 Unauthorized error when I try to refresh.

App Name: YuJa Enterprise Video Platform

App ID: ARSeJ_A3QkS5svlcjjPQZQ

POST:
URL: https://zoom.us/oauth/token
Params: grant_type=refresh_token&refresh_token="+ settings.getZoomRefreshToken()

Header:
Authorization: Basic base64{clientID:clientsecret}
(ā€œContent-Typeā€, ā€œapplication/x-www-form-urlencodedā€)

Additional Context:
The new Refresh token is being stored and used every time

Please let me know if you see anything wrong and if thereā€™s any way you can help

Summary

This text will be hidden