Before Creating a New Topic:
If you’re experiencing unexpected API/Zoom API Events (webhooks) behavior please search the forum with relevant keywords (e.x. error message) and follow the guidance outlined in those posts. Please also leverage the following support links:
- Zoom Developer Changelog for Dev Product Changes: https://marketplace.zoom.us/docs/guides/stay-up-to-date/changelog/
- General Troubleshooting: Zoom Developer Docs
- To Submit a Ticket for Unexpected API/Zoom API Events Behavior: Official Zoom Support | Help Center
- For General & Integrations Related Guidance: https://community.zoom.com/
- For Troubleshooting Webhooks: Guide: "We Are Not Receiving Webhooks As Expected" -- Here's What to Do! - #2
Format Your New Topic as Follows:
API Endpoint(s) and/or Zoom API Event(s)
Link the API endpoint(s) and/orZoom API Event(s) you’re working with to help give context.
POST https://zoom.us/oauth/token
#Header
Authorization: Basic base64Encode(client_id:client_secret)
Content-Type: application/x-www-form-urlencoded
#Body of type x-www-form-urlencoded
{
refresh_token:eyJzdiI6IjAwMDAwMSIsImFsZyI6IkhTNTEyIiwidiI6IjIuMCIsImtpZCI6IjFlODQ2MzZiLWJlNzUtNDFlOC04YTQ2LWIzMzY0YWExNWUyYyJ9.eyJ2ZXIiOjksImF1aWQiOiIxMDc2ZjMwNjI3ZTgxNDc1NTIxNzQ3ZWYwNjI1NjY3YiIsImNvZGUiOiJJMW43TnBqYVRLOFBsWmxUWDdSU0dHY01ldDVuVVpBc0EiLCJpc3MiOiJ6bTpjaWQ6T2VTemgzdDlTNmJmcXJmeElma05RIiwiZ25vIjowLCJ0eXBlIjoxLCJ0aWQiOjAsImF1ZCI6Imh0dHBzOi8vb2F1dGguem9vbS51cyIsInVpZCI6InlOcUFtVkpqUmFPZmVwMWV5d0g0RUEiLCJuYmYiOjE3MTgxMDY4MzUsImV4cCI6MTcyNTg4MjgzNSwiaWF0IjoxNzE4MTA2ODM1LCJhaWQiOiJTV0J6R3lNdlRqV3FUZ3Q4TEota3ZBIn0.t2OQ5WrAizLu6U9vtwqZOV3FIYlmQxtAVGquxbBWd9Vta9PZ3IsAsaJICOMpTJjdDNNw0nkdsoEu0g0Uen2Dhw
grant_type: refresh_token
}
#Header
Authorization: Basic base64Encode(client_id:client_secret)
Content-Type: application/x-www-form-urlencoded
Description
Details on your question, workflow or the problem you’re trying to solve.
After Authorizing Zoom with zoom App, we got an Autorization code and then we removed the zoom app from Added apps. Now with grant_type=refresh_token, we are still able to get Access token. It should not generate any token, since that zoom app is removed from Added app.
With same grant_type=authorization_code, its not returning any token as expected.
We are seeing this issue for only grant_type=refresh_token.
Error?
The full error message or issue you are running into, where applicable.
How To Reproduce
Steps to reproduce the behavior:
1. Request URL / Headers (without credentials or sensitive info like emails, uuid, etc.) / Body
2. Authentication method or app type
3. Any errors
method: ‘POST’,
uri: https://zoom.us/oauth/token,
body : {
refresh_token:eyJzdiI6IjAwMDAwMSIsImFsZyI6IkhTNTEyIiwidiI6IjIuMCIsImtpZCI6IjFlODQ2MzZiLWJlNzUtNDFlOC04YTQ2LWIzMzY0YWExNWUyYyJ9.eyJ2ZXIiOjksImF1aWQiOiIxMDc2ZjMwNjI3ZTgxNDc1NTIxNzQ3ZWYwNjI1NjY3YiIsImNvZGUiOiJJMW43TnBqYVRLOFBsWmxUWDdSU0dHY01ldDVuVVpBc0EiLCJpc3MiOiJ6bTpjaWQ6T2VTemgzdDlTNmJmcXJmeElma05RIiwiZ25vIjowLCJ0eXBlIjoxLCJ0aWQiOjAsImF1ZCI6Imh0dHBzOi8vb2F1dGguem9vbS51cyIsInVpZCI6InlOcUFtVkpqUmFPZmVwMWV5d0g0RUEiLCJuYmYiOjE3MTgxMDY4MzUsImV4cCI6MTcyNTg4MjgzNSwiaWF0IjoxNzE4MTA2ODM1LCJhaWQiOiJTV0J6R3lNdlRqV3FUZ3Q4TEota3ZBIn0.t2OQ5WrAizLu6U9vtwqZOV3FIYlmQxtAVGquxbBWd9Vta9PZ3IsAsaJICOMpTJjdDNNw0nkdsoEu0g0Uen2Dhw
grant_type: refresh_token
}
headers: {
Authorization: Basic base64Encode(client_id:client_secret)
Content-Type: application/x-www-form-urlencoded
}