Unable to find proper permissions in dash for API to use

qzhou · January 28, 2020, 9:02am

Hello,

I ran into this problem and wasn’t able to find the required perm in the Dash for my api to use.

With current permissions:
Zone.Zone, Zone.DNS

I got the error message:

Actor 'com.cloudflare.api.token.98c1588747f553e76740bfa223f6f204' requires permission 'com.cloudflare.api.account.zone.list' to list zones

I started looking at account settings, and wasn’t able to find anything may look like zone.list
Meanwhile in the dash:

I will check with the api docs later to see if it possible to do this with API, but I believe the result is not what it is intended in the first place?

Regards,

Quan

cloonan · January 28, 2020, 5:17pm

Similar issue here, Trouble with token for clearing cache: Could not find Zone ID for Zone

qzhou · February 1, 2020, 4:23am

I’ve read through the post and, in the dash, set “Resources” scope to “All zones”, it worked. However it’s not an intended behavior as it breaches the POPL: The api consumer now has priviledged access to all zones in a single account.