Valence API returns 403 when accessing user data with valid token
Hi everyone,
I'm running into an issue with the Valence API when trying to fetch user data. I’ve authenticated successfully and received a valid token, but when I call the /users/ endpoint, I get a 403 Forbidden response.
The app is registered, and the user account I’m testing with has the necessary permissions in Brightspace. I’ve followed the documentation and signed the request properly, so I’m not sure what I’m missing here.
Is there an additional role or org-level permission that needs to be configured?
Thanks for any help!
Answers
-
Hi @Rovmen.p.761,
A 403 Forbidden error when trying to fetch user data via the Valence API often points to a missing permission for the role associated with the authenticated user. Please ensure that your role has the 'Search for [role]' permission enabled. Additionally, verify that other necessary user permissions, such as 'View the Users' Email Address' and 'View Users' Org Defined IDs', are also active. You can cross-reference these against the detailed User & User Information Privacy permissions documentation. After enabling these permissions, please try your API call again.If the issue persists, I recommend opening a support case for a more in-depth investigation.
Regards,
Vivek
