topic Re: OAuth2 authorization for Private Apps issues in APIs & Integrations

OAuth2 authorization for Private Apps issues

edossantos — Wed, 30 Mar 2022 11:34:11 GMT

Hello,

Our customers use Private Apps to integrate with our product (3CX Phone System). Basically they create a Private App, configure the required scopes, and then configure the Client ID and Client Secret on our side to start the OAuth2 authorization flow. When they do this, they get this error from HubSpot:

Couldn’t complete the connection

The app developer doesn't have permissions to request the set of scopes. Please contact the app developer.

We verified that the scopes required by us, are exactly the same as the ones declared in the Private App:

crm.objects.contacts.read
crm.objects.contacts.write
crm.objects.companies.read
crm.objects.owners.read
timeline

In addition, we created a public app using a developer account, and configured the same scopes, and from there the OAuth2 authorization works fine.

Please note that we're not using the Access Token that you can directly get from the Private App page, instead we use the Client ID and Client Secret which are visible under "Show other credentials" for the private app. Is there any known issue related to OAuth2 authorizations with private apps? Any hint you can provide?

Thank you.

Re: OAuth2 authorization for Private Apps issues

SeanCullen — Thu, 31 Mar 2022 16:44:36 GMT

I'm wondering if auth2 authorizations worked at any point for private apps.

https://community.hubspot.com/t5/APIs-Integrations/The-app-developer-doesn-t-have-permissions-to-request-the-set-of/m-p/605360#M52063

Re: OAuth2 authorization for Private Apps issues

edossantos — Thu, 31 Mar 2022 17:39:02 GMT

Yes, this was definitely working in the past, we tested this in many installations, and we have many customers that were using this without any issues. This was broken just now....

Re: OAuth2 authorization for Private Apps issues

SeanCullen — Thu, 31 Mar 2022 18:06:54 GMT

@edossantos @dennisedson Good to know, I picked a **bleep** day to try auth with Private Apps.

Others seem to have similar problem since yesterday (https://community.hubspot.com/t5/APIs-Integrations/Private-App-OAuth/m-p/603764#M51966).

Re: OAuth2 authorization for Private Apps issues

dennisedson — Thu, 31 Mar 2022 22:58:59 GMT

Hey all,

The issue here appears to be that you are trying to install a private app as a public OAuth app. As @edossantos mentioned it was working, but it was undocumented and not the intent of private apps. Earlier this week, the product team closed that loop.

If you have a public app, the best route to authenticate is with OAuth. If you are building an app for a single portal, the better option would be to use a private app as documented here.

Another reason that you would use OAuth is if you needed access to our webhooks which are not available yet for private apps.

Sorry for any confusion this may have created!