help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

API client is not authorized by Fitbit to access the resource requested.

‎06-17-2022 11:29

‎06-17-2022 11:29

I tried to read the HRV values with my Personal type App.

I got the error "API client is not authorized by Fitbit to access the resource requested."

I tried to reset the tokens as described by @Unitcircle with no success

From an example I tried the following call:

curl -X GET "https://api.fitbit.com/1/user/-/hrv/date/2022-06-16/all.json" -H "accept: application/json" -H "authorization: Bearer <token>"

Response:
API client is not authorized by Fitbit to access the resource requested. Visit https://dev.fitbit.com/docs/oauth2 for more information on the Fitbit Web API authorization process.

Best Answer
Labels:
0 Votes
11 REPLIES 11

‎06-18-2022 07:33

‎06-18-2022 07:33

Same problem here. My access token is supposed to be able to access heart data.

 

Even the HRV summary endpoint does not seem to work properly. There, I get an empty result instead of the unauthorised message.

{
    "hrv": []
}

 

Best Answer
0 Votes

‎06-19-2022 12:19

‎06-19-2022 12:19

Faced the same problem.
HRV and BR intaday requests return the same response, but summary requests work well.
@mommi84 recently, I had no hrv data in the Fitbit app(health metrics) and got the same response. Probably, you have no data at the day you requested. Try to request a day with available hrv data.

Best Answer

‎06-24-2022 12:06

In response to PlayerNotFound

‎06-24-2022 12:06

Hi everyone,

 

We understand querying the SpO2, HRV and Br intraday data using the personal application type is not working now.   I'm working with the engineering teams to implement a fix.   In the meantime, if accessing the intraday for these endpoints is urgent, please submit an intraday request at https://dev.fitbit.com/build/reference/web-api/intraday/

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer

‎09-05-2022 20:34

In response to Gordon-C

‎09-05-2022 20:34

Please update the documentation to reflect the fact that this data is currently inaccessible to personal applications. I wasted a lot of time trying to debug this issue before finding this forum post.

 

Also, is there an ETA for fixing this bug? My application for intraday access was rejected years ago, so my users (https://apps.apple.com/us/app/fitsync/id1501104649) must make their own OAuth applications in order to access their personal data. Forcing them to also complete the intraday request form is a non-starter.

Best Answer
0 Votes

‎09-14-2022 07:08

In response to clintonb

‎09-14-2022 07:08

Hi everyone,

 

We have fixed the problem where applications could not retrieve HRV and Breathing Rate intraday data for "personal" applications.   We are still working on SpO2.   We will update the community posts when SpO2 is available.

 

Gordon

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer
0 Votes

‎01-05-2023 20:22

In response to Gordon-C

‎01-05-2023 20:22

Any update on SpO2?

Best Answer
0 Votes

‎01-06-2023 06:37

In response to clintonb

‎01-06-2023 06:37

Yes, SpO2 is fixed.   

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer
0 Votes

‎02-07-2023 22:15

In response to Gordon-C

‎02-07-2023 22:15

Hi Gordon,

You said "personal" applications only. Is it fixed for client and server applications? 

Best Answer
0 Votes

‎02-08-2023 11:37

In response to lsgreen

‎02-08-2023 11:37

Hi @lsgreen 

 

There wasn't a problem pulling the data with the client or server application types.   Are you having problems?

 

Gordon

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer
0 Votes

‎08-16-2023 15:24

In response to Gordon-C

‎08-16-2023 15:24

Hi Gordon,

I'm still unable to pull spo2 data, I can see the data is there on swagger, but when I try from my personal application I get a 403 for the same endpoint:

/1/user/-/spo2/date/today.json

Best Answer
0 Votes

‎08-21-2023 11:44

In response to djp238

‎08-21-2023 11:44

Hi @djp238 

What is your application type set to in the client ID registration on dev.fitbit.com?   If it is personal, then the access token needs to be for the owner of the application.   You can use the introspect endpoint to verify the user id and scopes of the access token.

Gordon

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer
0 Votes