Hi,
I ran into the most bizarre issue:
A user with "telephony.∗.∗ Full Access" returns "Error 403 you are missing telephony:extensionPool:view" via API when trying to query extensionPools.
I checked Roles, I checked permissions, I checked Oauth and related roles: all is right. What can possibly be causing this?
More details:
I have a role ROLE_TELEPHONY_ALL with telephony-> All Permissions enabled.
I have a role ROLE_AGENT where only parts of telephony (excluding view) are enabled.
USER1 is assigned both ROLE_TELEPHONY_ALL and ROLE_AGENT
I have an Oauth application APP1 using Code Authorization with the scope including everything under the sun.
When I try to login using USER1 credentials and access extension pools, I get this...
(used OCR so some of the words are weird... like genus :) Please ignore)
I checked twenty times that roles are assigned correctly, that the correct Division is assigned to roles and the user... What could it be?
2025-08-01 20:53:22,844429 |local| INFO|API Request Time| [93] "POST
[https://api.on.azurecloud.plah/v1/notification/channels/shis_type_systems/genus_cloud]
(https://api.on.azurecloud.plah/v1/notification/channels/shis_type_systems/genus_cloud)" method="POST" time=0.1011495861 [1]"" 2025-08-01
20:53:22,910307 |local| INFO|API Request Time| [94] "GET [https://api.on.azurecloud.plah/v1/authorization/claims/shis_type_systems/genus_cloud]
(https://api.on.azurecloud.plah/v1/authorization/claims/shis_type_systems/genus_cloud)" method="GET" time=0.119332688 [1]"" 2025-08-01
20:53:22,968853 |local| INFO|API Request Time| [95] "GET [https://api.on.azurecloud.plah/v1/telephony/providers/edge/enterprise/config/systemUser?
user=1&includeSize=1&size=10&pageNumber=1&sortBy=userId&sortOrder=DESC]
(https://api.on.azurecloud.plah/v1/telephony/providers/edge/enterprise/config/systemUser?
user=1&includeSize=1&size=10&pageNumber=1&sortBy=userId&sortOrder=DESC)" method="GET" time=0.180491 [1]"" 2025-08-01 20:53:22,967245 |local|
INFO|DCCloudAPIService| {UnhandledError: "object"}(GuzzleHttp\Exception\ClientException(errorCode=403): Client error: "GET
[https://api.on.azurecloud.plah/v1/telephony/providers/edge/enterprise/config/systemUser?
user=1&includeSize=1&size=10&pageNumber=1&sortBy=userId&sortOrder=DESC]
(https://api.on.azurecloud.plah/v1/telephony/providers/edge/enterprise/config/systemUser?
user=1&includeSize=1&size=10&pageNumber=1&sortBy=userId&sortOrder=DESC)" resulted in a 403 Forbiddenresponse.message: "You do not have
permission to perform the requested action. You are missing the following permission(s): telephony:enterprise:read. (truncated...) at
/var/www/html/vendor/guzzlehttp/guzzle/src/Exception/RequestException.php:113, access token: "xxxxxx...yyyyy..", refresh token: "xxxx.yyyy.."}`
#PlatformAPI#Uncategorized------------------------------
Amit Abdul
------------------------------