Skip to main content
Solved

403 access denied trying to use the webhook API

  • September 13, 2021
  • 3 replies
  • 2700 views

Bryan_Berger

I’m admin on the account (professional) and have created an access token. I’m trying to add a webhook to a team like so:

curl -X POST -H 'X-FIGMA-TOKEN: MY_TOKEN_HERE' -H "Content-Type: application/json" 'https://api.figma.com/v2/webhooks' -d '{"event_type":"LIBRARY_PUBLISH","team_id":"TEAM_ID_HERE","endpoint":"END_POINT_HERE","passcode":"PASSCODE_HERE"}'

And I get this error on POST

{
  "error": true,
  "status": 403,
  "message": "You don't have permission to create a webhook for this team."
}

and this error on GET

{
  "error": true,
  "status": 403,
  "message": "You don't have permission to access this team."
}

Confused. What other permissions do I need to setup?

Best answer by Bryan_Berger

It looks like your team permission for both these teams is currently “can edit” and not “Admin” specifically. It’s important to note that the team admin permission is separate from the organization admin role; Webhooks require an explicit team admin permission setting.

I was not aware that Org admin permission doesn’t cascade down to the team. Support helped me get this working.

View original

3 replies

Bryan_Berger
  • Author
  • 15 replies
  • Answer
  • December 14, 2021

It looks like your team permission for both these teams is currently “can edit” and not “Admin” specifically. It’s important to note that the team admin permission is separate from the organization admin role; Webhooks require an explicit team admin permission setting.

I was not aware that Org admin permission doesn’t cascade down to the team. Support helped me get this working.


Gleb
  • Power Member
  • 4707 replies
  • December 15, 2021

Very useful, thanks for sharing!


Jason_Jose_Flysoft

Hello.
My Team Permission is set to Admin and Design permission is set to Editor.

However, when I try to link the file with Supernova.io the following error shows up.

image

Can someone please help


Reply


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings