Hi, I have some backend url as the homepage of zoom app. The zoomappscontext header we get along with it is intercepted in backend and decoded and then redirected to a frontend url with a query param for the data I require. Now after redirecting to frontend url…on windows, it is opening fine but on mac, this error is coming.

Missing OWASP Secure Headers: [“Strict-Transport-Security”,“X-Content-Type-Options”,“Content-Security-Policy”,“Referrer-Policy”] for URL

What should be done? Please help. Is there any example for how headers can be added?

Hi Guys,
Does the new set of API allow for inserting audio back into the zoom stream as a voice bot?

The customer already built a voice bot that inserts audio using a hack to the web SDK but he wanted to know if zoom now formally supports this using a new API. 

Thanks,

Good morning zoomerinos!

Hit a bit of a roadblock, and there is some discussion of this error on Google, but none of the advice worked for me. And other folks getting the issue seem to be using grant_type=refresh_token whereas I'm using grant_type=authorization_code. So I thought I'd thought I would ask for help here...

I am setting up a marketplace app with Zoom OAuth. I am able to redirect to the Zoom Authorization page just fine, and I return to my dev app just fine with an authorization `code`  in the query params.

However, when I try to the POST to https://zoom.us/oauth/token, I get a 400 HTTP response with:

{"reason":"Invalid authorization code","error":"invalid_grant"}

Here's the CURL of the request that's failing:

curl \
-H 'Authorization: Basic aWxRc3VXaThUank3S3hmakdzZURpZzpyNmc5ZjRKdmw3YndOM0c3SXc3TUdiQm1pRHloZng5ZA==' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'code=DjVBukFT1o1SZSYLINJRBavYXnnWiZESQ&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fkernel-hvprcz4n3-kernel-fyi.vercel.app%2Fapi%2Fzoom%2Foauth%2Fsave' \
'https://zoom.us/oauth/token'