HTTP 403 on /demographics: "This application has insufficient scope to perform the operation."
Hi folks - I'm getting an HTTP 403 Forbidden status on the new demographics endpoint. Other endpoints are working fine - orgs, classes, users, etc.
I'm authorizing with two scopes:
- https://purl.imsglobal.org/spec/or/v1p1/scope/roster.readonly
- https://purl.imsglobal.org/spec/or/v1p1/scope/gradebook.readonly
The auth documentation says roster.readonly should give permission for demographics.
Any ideas where the issue might be?
Comments
-
Bump….I see I accidentally posted in SKY API Authorization. This is really for OneRoster.
Has anyone seen this with the demographics endpoint?
0 -
@Eric Eskildsen I moved your topic to the Education Management APIs forum category. Thanks for letting us know.
1 -
Hi @Eric Eskildsen , if you have any issues with endpoints I encourage you to reach out to our support team with the details of the issue so that the team can troubleshoot.
You can do this here:
That being said, I did have a chance to test the Demographics endpoint with the OAuth 2.0 authorization method and I am receiving the same results you are. Testing with 1.0 the results return as expected.I will go ahead and open a ticket for you regarding this and reach out once I have the issue reported.
1 -
@Todd DeSchuiteneer Thanks, Todd. I see that link mentions customers - can I use that as an integrator, too? That would be great to be able to open tickets when issues like this come up, although I understand if support is limited to customers.
0 -
For anyone else who may run into this, Todd opened a ticket and sent the solution in the email thread.
The demographics endpoint needs an extra scope in the request to the /token endpoint during auth:
https://purl.imsglobal.org/spec/or/v1p1/scope/roster-demographics.readonly
Adding that scope fixed the issue for me.
Note: The demographics scope isn't documented yet (see scope documentation). Todd said it should be added soon.
0 -
Hi @Eric Eskildsen you do have access to our support at this time. You should be able to chat in to report problems in the future.
1
Categories
- All Categories
- 6 Blackbaud Community Help
- 211 bbcon®
- 1.4K Blackbaud Altru®
- 396 Blackbaud Award Management™ and Blackbaud Stewardship Management™
- 1.1K Blackbaud CRM™ and Blackbaud Internet Solutions™
- 15 donorCentrics®
- 360 Blackbaud eTapestry®
- 2.5K Blackbaud Financial Edge NXT®
- 650 Blackbaud Grantmaking™
- 568 Blackbaud Education Management Solutions for Higher Education
- 3.2K Blackbaud Education Management Solutions for K-12 Schools
- 937 Blackbaud Luminate Online® and Blackbaud TeamRaiser®
- 84 JustGiving® from Blackbaud®
- 6.5K Blackbaud Raiser's Edge NXT®
- 3.7K SKY Developer
- 248 ResearchPoint™
- 119 Blackbaud Tuition Management™
- 165 Organizational Best Practices
- 239 The Tap (Just for Fun)
- 34 Blackbaud Community Challenges
- 31 PowerUp Challenges
- 3 (Open) PowerUp Challenge: Data Health
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Product Update Briefing
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Standard Reports+
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Email Marketing
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Gift Management
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Event Management
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Home Page
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Standard Reports
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Query
- 785 Community News
- 2.9K Jobs Board
- 53 Blackbaud SKY® Reporting Announcements
- 47 Blackbaud CRM Higher Ed Product Advisory Group (HE PAG)
- 19 Blackbaud CRM Product Advisory Group (BBCRM PAG)