We have a published Zoom marketplace app that uses recall.ai to join meetings hosted by external customers. We’re experiencing persistent “invalid signature” errors that appear to require manual intervention on the Zoom platform side.
Timeline:
The original app owner account was deleted, causing the app to become invalid
During this period, “invalid signature” errors occurred as expected
We assigned a new owner to reactivate the app
We waited about 2 weeks before resuming use of the app
We resumed using the reactivated app, expecting it to work properly
However, “invalid signature” errors persisted for approximately 65% of all meetings
We have now stopped using this app again due to these errors
Current Situation:
The app credentials appear to be configured correctly
The errors affect both internal and external meetings
recall.ai has confirmed this appears to be an internal Zoom platform issue requiring manual intervention
Hi @yamaryokw
Thanks for reaching out to us and welcome to the Zoom Developer forum!
Have you made sure that the client ID and client secret of the app when you assigned it to the new owner, remain the same ?
We didn’t explicitly diff the values before/after the ownership transfer, but as far as we can tell the Client ID has not changed (it’s still lHJkeHV7QvqEHlQXFRCJww). When we reconfigured the bot, we copied both the Client ID and the Client Secret directly from the Marketplace production app page into our service, so it’s unlikely we’re using incorrect values.
Thanks for confirming that @yamaryokw
If you can, can you provide an example of an invalid signature or are you able to confirm is correctly constructed:
Hi @yamaryokw
I created an internal ticket for our Engineering team to review this issue and will get back to you with an update soon (ZSEE-183904 internal ticket number for reference)
Hi @yamaryokw
We are currently looking into this issue and waiting for an update from Engineering team. I will get back to you as soon as I have a more definite answer
Thank you for your patience