INSUFFICIENT_SCOPES Error When WRITE is supposed to include the READ permission?

ballhogjoni · February 26, 2023, 6:42pm

I’m getting an INSUFFICIENT_SCOPES Error when I searching the catalog. My app has the ITEMS_WRITE permission and from what I read in the docs that includes the ITEMS_READ permission. Did I misread the docs? Here’s the response

{
    "success": false,
    "message": [
        {
            "category": "AUTHENTICATION_ERROR",
            "code": "INSUFFICIENT_SCOPES",
            "detail": "The merchant has not given your application sufficient permissions to do that. The merchant must authorize your application for the following scopes: ITEMS_READ"
        }
    ]
}

Bryan-Square · February 27, 2023, 5:37pm

Each permission is its own permission. If you have ITEMS_WRITE you will also need ITEMS_READ. Having a WRITE permission won’t automatically grant you that permissions READ scope.

ballhogjoni · February 27, 2023, 5:40pm

I feel like that is very odd. All other API’s i’ve worked with include READ when you have WRITE access. What’s is the reasoning behind this?

Bryan-Square · February 27, 2023, 7:26pm

With Square all permission scopes have to be explicitly requested which is why all necessary scopes need to be included in the OAuth request.

Topic		Replies	Views
Insufficient_scopes Questions	5	406	January 30, 2024
INSUFFICIENT_SCOPES driving me crazy (in sandbox) Questions payments-api	2	816	December 1, 2022
Square appointment - Error INSUFFICIENT_SCOPES / APPOINTMENTS_READ Questions	3	518	December 27, 2022
Insufficient Scope Error Questions oauth-api	11	5361	December 9, 2020
INSUFFICIENT_SCOPES Error Questions	2	875	January 26, 2021

INSUFFICIENT_SCOPES Error When WRITE is supposed to include the READ permission?

Related topics