Unable to find proper permissions in dash for API to use


I ran into this problem and wasn’t able to find the required perm in the Dash for my api to use.

With current permissions:
Zone.Zone, Zone.DNS

I got the error message:

Actor 'com.cloudflare.api.token.98c1588747f553e76740bfa223f6f204' requires permission 'com.cloudflare.api.account.zone.list' to list zones

I started looking at account settings, and wasn’t able to find anything may look like zone.list
Meanwhile in the dash:

I will check with the api docs later to see if it possible to do this with API, but I believe the result is not what it is intended in the first place?



Similar issue here, Trouble with token for clearing cache: Could not find Zone ID for Zone

I’ve read through the post and, in the dash, set “Resources” scope to “All zones”, it worked. However it’s not an intended behavior as it breaches the POPL: The api consumer now has priviledged access to all zones in a single account.

Adding Zone > Zone > Read resolved this for me