What role permissions are needed to prevent the "Not Authorized" API response?

Mateen.A.4093 · August 20

I have an LTI 1.1 app in brightspace that performs the following actions and I need to know what Role Permissions (I created a custom API Service Account role) I need to not get the "Not Authorized" message in my API response when performing the below actions.

- Create a user
- Delete a user
- Enroll a user into a Course (Org Unit Id)
- Unenroll a user from a Course (Org Unit Id)
- Lookup current course information

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/enrollments/orgUnits/{org_unit_id}/users/

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/enrollments/orgUnits/{org_unit_id}/users/{user_id}

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/enrollments/{org_unit_id}/users/?roleId=____

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/enrollments/

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/users/

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/users/{user_id}

{BRIGHTSPACE_API_BASE_URL}/d2l/api/lp/1.9/courses/{org_unit_id}

Chris.S.534 · August 20

Hi Mateen,

A resource for you to review is linked below that you should find useful:

https://community.d2l.com/brightspace/kb/articles/1369-brightspace-api-authentication-guide-best-practices

A quick way to troubleshoot the API Service User role permission issue is to access the Brightspace UI with the API Service user account used to make the API calls. If in the UI and you can/cannot perform the action you want to perform through an API call, you'll need to adjust the role permissions accordingly. Also make sure you have included all the necessary Scopes for your application.

Hope that helps!

Mateen.A.4093 · August 23

@Chris.S.534 - Apologies for the late reply, this helped. I was initially confused and misread your comment. I was able to fix the issue I had, thank you.

What role permissions are needed to prevent the "Not Authorized" API response?

Answers

Categories