We are receiving the below error when we attempt to retrieve some information from the campaign entity in Hubspot Marketing to display in our MSDCRM system. We are using KingswaySoft as an integration connector.
The issue appears to be with permissions, but the user in question is a ‘superadmin’. We have tested the functionality on the public test account and it works fine there, so we have concluded that there is a permissions issue in our portal.
Can you please advise?
[HubSpot Source [2]] Error: An error occurred with the following error message: "rhj: The remote server returned an error: (403) Forbidden. (Error Type / Reason: Forbidden, Detailed Message: {“status”:“error”,“message”:“This oauth-token (xxxxxxxxxxxxxxx) does not have proper permissions! (requires any of [email-access])”,“correlationId”:“xxxxxxxxxxx”,“requestId”:“xxxxxxxxxxxx”}) (SSIS Integration Toolkit for HubSpot, v4.0.0.591 - DtsDebugHost, v14.0.500.272)System.Net.WebException
We just came across this thread and wanted to provide an update for any future searches.
It appeared that our software only included contacts scope during authorization and we fixed this issue in our v4.1 release on Oct 6, 2017:
Fixed (v4.1): “Auth In App” option in HubSpot Connection Manager does not include all scopes during the authorization.
For the clients who are already on v4.1 or later, if your HubSpot portal does not have Campaigns then you may get the same error message, in which case you may want to double check if Marketing Enterprise is included in your portal.
We just came across this thread and wanted to provide an update for any future searches.
It appeared that our software only included contacts scope during authorization and we fixed this issue in our v4.1 release on Oct 6, 2017:
Fixed (v4.1): “Auth In App” option in HubSpot Connection Manager does not include all scopes during the authorization.
For the clients who are already on v4.1 or later, if your HubSpot portal does not have Campaigns then you may get the same error message, in which case you may want to double check if Marketing Enterprise is included in your portal.
Can you direct message me with the user who authorized the integration and the Hub ID of the portal you’re installing the integration to? It would also help if KingswaySoft could send the URL of the request that is failing.
So the error this post was referencing from the beginning occurs when an integration tries to access an API with a token lacking the proper scope(s). While it appears from the KingswaySoft response that they’re requesting the proper scopes, we can see from your investigating that the token doesn’t have the correct scopes. Based on the scopes they request, it’s missing all of the optional scopes that they request. Does the portal this integration is installed in have access to all of the relevant tools? Is it possible that this integration was authorized at a time when the portal did not have those tools or when the integration didn’t request those scopes? If the KingswaySoft integration is requesting all the correct scopes, you should be able to uninstall/reinstall the integration in order to re-authenticate and receive a new token with the proper scopes.
The portal does have access to the relevant elements we are attempting to integrate and there have been no changes on its permissions i.e. we believe portal has access to all the tools required for this integration.
Also, new Auth token get generated every time when we run integration even if portal tools changed then integration should pick correct scope in next run.
Please follow the previous post as I have covered this is quite good details.
I am forwarding this query to Kingswaysoft support however their HubSpot component is working perfectly fine with the HubSpot test account. I am using following hubspot test account.
That error message isn’t referring to the user’s permissions, but rather the scopes of the Oauth token being used to make the request. It appears that when the token was generated, the email-access scope wasn’t requested (see below). Do you have any more information on the scopes that KingswaySoft is requesting when initiating the integration?
.png "HubSpot Alumni"){kind=icon}
