Scopes for downloading meeting recordings

API and Webhooks
1

Hi, I know this question has been asked before, but the issue is still happening.
I’m trying to write a server to server OAuth2 meeting recording downloader, and getting these 2 missing scopes: (even for my OWN meeting that I create and record as a test case).

  • cloud_recording:read:list_recording_files
  • cloud_recording:read:list:recording_files:admin

I guess I can ask our Admin to add these scopes to my account, but there is the question of security and compliance. (Is it a risk for confidentiality purposes? I don’t want to download ANY company meeting that the app is not invited to) I’m not sure why I need these when my app already has these:

  • cloud_recording:read:list_account_recordings:admin
  • cloud_recording:read:recoarding:admin
  • cloud_recording:read:archive_files:admin

Also, how DOES one make sure the app only can be run for apps the meeting owner approves of? Is it possible to do it with a server -to-server app, or does it HAVE to be a webhook app? (I want to avoid webooks for now if possible).

2

Hi @sci909
Thanks for reaching out to us and welcome to our community!
If you are working with a Server to Server OAuth app, this is an admin-managed app and what this means is that if you have admin privileges and you are able to create a S2S app, you will be able to download all recordings from the account.

If you want an app to download only your recordings, I suggest you to work with a General Oauth app of the User level type. This way you will authorize the app on your account and you will only access data from your account

Hope that helps

3

Thank you Elisa this is really helpful ! :slight_smile:

1 Like
4

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.