Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Compete to become Power BI Data Viz World Champion! First round ends August 18th. Get started.

Reply
risDS
Frequent Visitor

Rest API with Service Principal - Can't get past Error 403

‎07-08-2022 02:59 AM

Hello everybody,

 

I seem to require some help on the subject, after several hours of searches and experimentation, I still cannot seem to solve my issue.

 

I want to use the API to programmatically add rows to a dataset. To do so, I :

- Created an application in my AAD, with an associated secret and gave it the permissions PowerBI "Tenant.ReadWrite.All" and granted the permission with an admin account

risDS_0-1657273967763.png

- Allowed service principals to use Power BI APIs through the Admin Portal

risDS_1-1657274050324.png

- Added the service principal account to a newly created Workspace (first as Member, now as Admin)

risDS_2-1657274097835.png

 

- Used OAuth 2 authentication flow to get the token (Auth URL : https://login.microsoftonline.com/{TenantId}/oauth2/v2.0/token, scope : https://analysis.windows.net/powerbi/api/.default )

 

- Now the token seems perfectly valid :

risDS_3-1657274242367.png

 - But trying to contact any endpoint ends up with a 403 Forbidden response (ex : https://api.powerbi.com/v1.0/myorg/datasets/)

 

What am I missing here ?

 

Thank you in advance, I hope you will help me figure this out !

 

RS

 

 

 

Labels:
Message 1 of 4
1,710 Views
0
1 ACCEPTED SOLUTION
risDS
Frequent Visitor

‎07-13-2022 01:44 AM

Thank you@Anonymous and @AmosHersch for your answers but they are incorrect.

As a matter of fact, using the C# connector (https://github.com/microsoft/PowerBI-CSharp) with the exact same configuration, I am able to correctly carry through with the requests on all operations needed (so far Get groups, Get/Post Datasets, Post Rows in Datasets). It seems to be an issue with Postman authentication flow of some sort but I do not have time to investigate further as of now.

 

View solution in original post

Message 4 of 4
1,629 Views
0
3 REPLIES 3
risDS
Frequent Visitor

‎07-13-2022 01:44 AM

Thank you@Anonymous and @AmosHersch for your answers but they are incorrect.

As a matter of fact, using the C# connector (https://github.com/microsoft/PowerBI-CSharp) with the exact same configuration, I am able to correctly carry through with the requests on all operations needed (so far Get groups, Get/Post Datasets, Post Rows in Datasets). It seems to be an issue with Postman authentication flow of some sort but I do not have time to investigate further as of now.

 

Message 4 of 4
1,630 Views
0
Anonymous
Not applicable

‎07-13-2022 01:37 AM

Hi @risDS,

As AmosHersch said, the tenant permission may not be suitable for all API usages. They will also require the contents level permissions.

For example, the dataset API requires the permissions of the dataset, the report API will require the report permissions. You can find these additional requrenmenmt in the detailed API page 'scope' part.

BTW, they may also require additional permissions or be limited used due to connection mode when you work on particular data sources. (e.g. Azure AS)

Regards,

Xiaoxin Sheng

Message 3 of 4
1,634 Views
0
AmosHersch
Microsoft Employee
Microsoft Employee

‎07-08-2022 07:56 AM

Hi @risDS ,

 

I can't tell for sure, but I guess  "Tenant.ReadWrite.All" isn't enough, it might be confusing but it doesn't contain all other scopes. For example if a certain API requires "Report.ReadWrite.All" then it will fail for you.

Each API has it's specific scopes requirement, and if the scope is missing from the token the API will fail.

Message 2 of 4
1,669 Views
0

Helpful resources

Announcements
July 2025 community update carousel

Fabric Community Update - July 2025

Find out what's new and trending in the Fabric community.

July PBI25 Carousel

Power BI Monthly Update - July 2025

Check out the July 2025 Power BI update to learn about new features.

View All