help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Bug? User apiSubscriptions returns 403 insufficient_scope

ANSWERED

‎01-05-2017 06:31 - edited ‎01-05-2017 06:32

‎01-05-2017 06:31 - edited ‎01-05-2017 06:32

Hello,

 

We've observed some unexpected results after having wired up retrieval of user apiSubscriptions to our Fitbit web app. The unexpected behaviour is as followes:

 

1) Have a user opt-out of certain scopes when linking to our Fitbit web app via OAuth (e.g. foods or sleep)

2) Our web app querries https://api.fitbit.com/1/user/-/apiSubscriptions.json for said user

3) This call results in: {"errors":[{"errorType":"insufficient_scope","message":"This application does not have permission to access weight data. Visit https://dev.fitbit.com/docs/oauth2 for more information on the Fitbit Web API authorization process."}],"success":false}

 

We would have expected that this call will still succeed, returning either an empty list of notification subcriptions (as the call does for users who have in fact not subscribed to any any of our notification endpoints) or a list of the notification subscriptions to which the user has subscribed (if they have granted permission to the related scopes). The 403 / insufficient_scope error seems unexpected in this case. Is this the intended behaviour?

 

Thanks!

 

-Stefan

Best Answer
Labels:
1 BEST ANSWER

Accepted Solutions

‎01-05-2017 09:58

‎01-05-2017 09:58

@StefanS Currently, that's expected behavior. The call you're making is to view all subscriptions, which will result in a 403 if not all scopes are granted. This has been brought up before in a similar thread.

Andrew | Community Moderator, Fitbit

What motivates you?

View best answer in original post

Best Answer
0 Votes
2 REPLIES 2

‎01-05-2017 09:58

‎01-05-2017 09:58

@StefanS Currently, that's expected behavior. The call you're making is to view all subscriptions, which will result in a 403 if not all scopes are granted. This has been brought up before in a similar thread.

Andrew | Community Moderator, Fitbit

What motivates you?
Best Answer
0 Votes

‎01-05-2017 15:52

In response to AndrewFitbit

‎01-05-2017 15:52

Understood - thanks!

Best Answer
0 Votes