There appears to be a weird issue where a API token (generated by Canvas) is forbidden to access files in some folders, but granted access when the user logs in normally via the website.
Steps to reproduce:
With a token, access the endpoint /api/v1/folders/{folderID}/files
Greeted with the following response:
{
"status": "unauthorized",
"errors": [
{
"message": "user not authorised to perform that action"
}
]
}
Expected behavior:
The files within the folder should be visible, since it is if the user was to log in normally.
Summary:
There appears to be a weird issue where a API token (generated by Canvas) is forbidden to access files in some folders, but granted access when the user logs in normally via the website.
Steps to reproduce:
/api/v1/folders/{folderID}/filesExpected behavior:
The files within the folder should be visible, since it is if the user was to log in normally.
Actual behavior:
Greeted with an error 403.
Additional notes: