Some Scopes Only Available in Certain App Types

Requirement:
We need to be able to hit the get recordings endpoint (get /meetings/{meetingId}/recordings) in an Account-level Server to Server app that we do not intend to publish to the app store. In order to do that, we need the following scopes:
cloud_recording:read:list_recording_files
cloud_recording:read:list_recording_files:admin

Neither me nor my account owner/admin is able to add these scopes in our S2S app. However, when I create a ‘general app’ - which is a type of app intended to be published - I can now add these scopes. The problem is, we do not want to publish this app externally.

Error
When attempting to hit the get recordings endpoint, I receive the following error:
{ "code": 4711, "message": "Invalid access token, does not contain scopes:[cloud_recording:read:list_recording_files, cloud_recording:read:list_recording_files:admin]." }

How To Reproduce
Steps to reproduce the behavior:
*1. Attempt to query get recordings using our S2S app credentials
*2. See invalid scope error (above)
*3. Visit app config page, unable to add required scopes
*4. Add as many user role permissions as possible - still not able to add scopes

Hey @afarmer ,

While you’re correct that General apps are typically published, there is also an option to get your app approved but keeping it “Unlisted”, in which case it wouldn’t be open to the public.

Here is the corresponding documentation around this.

With this in mind, I would recommend moving to a General app since it supports the scopes needed for this flow to work, and can also be kept unlisted/private.