I have two google cloud console projects. First one is for authentication purposes only and the second one is for work with classrom, it has topic, subscription, and classroom courses. I added user to both projects, on the second porject he is an owner, and for some reason i started to get errors while creating course registration to topic after authenticating on first project.
Full error is:
"error": {
"code": 403,
"message": "#TopicNotOwnedByProject The specified Cloud Pub/Sub topic does not belong to your Developer Console project.",
"status": "PERMISSION_DENIED"
}
When i do sign in in first project i use owner account for second project. So in request i pass token which got after signing in first project.
This errors started to appear about 3 weeks ago, did google change something or i am missing something?
Related
I'm trying to use this endpoint from the Instagram graph api:
GET /ig_hashtag_search?user_id={user-id}&q={q}
Documentation for this endpoint can be found here.
I'm running this GET request:
https://graph.facebook.com/v14.0/ig_hashtag_search?q=coke&transport=cors&user_id=<my_user_id>&access_token=<my_access_token>&q=coke
and get this as response:
{
"error": {
"message": "(#200) Requires instagram_basic permission to manage the object",
"type": "OAuthException",
"code": 200,
}
}.
The user id comes from my instagram account and the access_token that I'm using is a User token generated with "Graph API explorer" and I can see that this token has the scope "instagram_basic" when using the "Access Token Debugger".
I can't understand why this does not work? Do I really need to submit a API review just to test the hashtag endpoint during development?
Please help!
I guess sometimes App review team of Facebook doesn't know what is the usage of the permission so they just decline the submissions randomly. I got that permission like 3 months ago and i checked my app review. I send them this text
We are going to use instagram_basic to read an Instagram account profile's info and media. We will get the basic metadata of an Instagram Business account profile like "USERNAME", "ID", "FOLLOWERS", "FOLLOWING". You can check the Screescast to see how we use the instagram_basic on our app.
Here is what they saw while they do the app review
Also be careful while you send requests, keep in mind to change it to development mode. Some of the endpoints works only in live mode. The API still changes a lot and there are tons of bugs i see in my project. I hope this helps.
Our app started getting the following error message on a very basic get that was working perfectly fine until recently
https://graph.instagram.com/v12.0/me?access_token=<IG...>
{
"error": {
"message": "Unsupported request - method type: get",
"type": "IGApiException",
"code": 100,
"fbtrace_id": "A2KKkkTQ2nn70IQPCGKcKVB"
}
}
What is this error? This has been working for months, and it looks like freshly created access_token do not have an issue...
Posting answer after days of research:
You need to get your business approved, and then this error will disappear.
The issue is that the dashboard was not letting us request a business approval since we did not use (supposedly) any API requiring such approval.
Long story short, you need to create another dummy app with the same business that needs business approval (e.g. a game). Ask for permission review, then once the permission review is pending, you will be able to require business approval. Once that's done, you can delete the dummy app.
I am working on the GmailwebhookTrigger in which I am getting the notification for the new emails. I want to add multiple members into my topic means want to get notifications for multiple people on my topic. To do that I have to add that member as pub/sub subscriber into my iampolicy console. I am not able to do that it is giving me following error
{
"error": {
"code": 403,
"message": "The caller does not have permission",
"status": "PERMISSION_DENIED"
}
}
by hitting the following api
https://cloudresourcemanager.googleapis.com/v1/projects/gmailwebhookserver:getIamPolicy
also if I tried to hit the following other api I get the same error
https://cloudresourcemanager.googleapis.com/v1/projects/gmailwebhookserver:setIamPolicy
I have done everything provided in the documentation to fix that, but I am not able to do so. But when I am adding external user as owner to project in my IamConsole at following url https://console.cloud.google.com/iam-admin/ia?project=testProject, I am able to achieve what I am willing to achieve. But that thing I have to do manually by doing so I am giving full rights of my project to other users. I think to allow external users to make changes in my cloud iampolicies I need to authenticate external users using my service account. But I don't know how to do that. Suggest me way either to authenticate user with my service account or by any other means, so that I may have to do nothing manually.
Does anybody know what does it mean error_subcode: 33 in the facebook response error? I know it's related to a mission permission but I want to be 100% sure.
We received the following error:
{"error":{"message":"Unsupported get request. Object with ID 'XXXX'
does not exist, cannot be loaded due to missing permissions, or does
not support this operation. Please read the Graph API documentation at
https://developers.facebook.com/docs/graph-api","type":"GraphMethodException","code":100,"error_subcode":33,"fbtrace_id":"BRwGjA9kkKU"}}
But in the Facebook API documentation about Graph API https://developers.facebook.com/docs/graph-api/using-graph-api/ , I cannot find error_subcode with value 33.
I want that I can rely on this subcode to verify that I don't have permissions to get the resource from Facebook API because I don't want to rely on the error message.
Here is the Facebook bug portal link to the similar issue:
https://developers.facebook.com/bugs/316526372199563/
The gist of it is:
these users registered for Facebook/Messenger using their phone number and such users are not yet queryable by the API. This is on the roadmap for the API, please keep an eye on our changelog for when this goes live in a future version: https://developers.facebook.com/docs/graph-api/changelog"
I can't offer a definitive solution, as there seem to be multiple possible causes. However, I encountered this today and wish to offer this possible cause.
If you are encountering this error when you are testing your Facebook TEST app, it might be related to the fact that you're in TEST app mode.
In my case, I worked on implementing Facebook login for a while. When my partner joined in development, he couldn't log in in his development environment. He got the error you mention for the 'me' endpoint:
{
"error": {
"message": "Unsupported get request. Object with ID 'me' does not exist, cannot be loaded due to missing permissions, or does not support this operation. Please read the Graph API documentation at https://developers.facebook.com/docs/graph-api",
"type": "GraphMethodException",
"code": 100,
"error_subcode": 33,
"fbtrace_id": "____"
}
}
This had actually already been deployed and tested to our production environment, where we are both able to register and log in just fine.
After I added him as Administrator to the Facebook TEST app, the issue resolved and he could register and log in on his own development environment.
So, you may want to check if this is applicable to you. An easy way to check is to use the keys for the real app in your development environment.
Error subcode 33 information as per Facebook official documentation:
Error code 100, subcode 33
Unsupported post request.
This error may occur if your access token is not added as a system user with appropriate permissions to the ad account that owns a Custom Audience. Verify the ad account in Business Manager and verify all system users appear under the ad account as Admin:
Click on Business Settings
Click the ad account
Select Add people
Search for system user and add them as Admins
Retry your API call
Here's the link to the Facebook marketing API error reference.
https://developers.facebook.com/docs/marketing-api/error-reference/
This contains the resolution for error 33 along with all the other errors.
Last week I followed the steps in the "How to configure single federated login to AWS using Google Apps" tutorial, and everything went as expected. Yesterday (2016-12-12) I returned to the panel to use the "Users: patch" Google API to set up new roles for my users based on the Schema SSO created according to the tutorial, but I was not able to execute the request as I had done the previous week.
The following error message is displayed in the "Try this API" panel:
"Found array where value was expected"
Here is an example of the request body as defined in the tutorial (Note - in this example I am using placeholders for the values of the value and customType fields):
{
"customSchemas": {
"SSO": {
"role": [
{
"value": "<my aws role ARN>,<my aws provider ARN>",
"customType": "Developer"
}
]
}
}
}
From what I understand the message is related to the role field.
I would like to understand what changed from the previous week to yesterday and how should I configure the JSON for the "Users: patch" API according to the SSO Schema created the previous week?
I was able to get to the "Freeform" editor and make the changes using this url instead of the one in the AWS documentation. I was having problems getting Postman to authenticate with google, which made this easier.
I had to make some slight changes for this to work.
I followed the steps from this article (same article OP used)
I used this URL to get to the freeform editor (same link as above answer)
In step 4 of the article, which is the step before the question posted by OP above, I used 'SAML' as the schemaName rather than 'SSO'
I then used 'SAML' as the customSchema name in the question above, rather than 'SSO' and repeated the process with different email addresses for other users
Followed the rest of the article and FINALLY my SSO to AWS from g-suite works.