Sapisidhash & Clients6 endpoints #95

New issue

Closed

opened 2025-10-14 16:42:16 -06:00 by navan · 0 comments

navan commented

2025-10-14 16:42:16 -06:00

Owner

Originally created by @llvmx on 7/24/2023

I see there are some API calls for which the sapisidhash is being used. If I am not mistaken, you can bypass quota limits and other restrictions by using this type of auth method.
Now I would like to know if some other API endpoints, which are hosted on clients6 or on googleapis don't work with sapisidhash, because they return INVALID_ARGUMENT with no hint as to why this error appears (even those with no parameters).
I have used official API keys to generate the hash in the same way as in this project. It works with oauth, but not with sapisid.
Perhaps someone does have resources on this matter? Maybe I am missing certain cookies for the request.

@mxrch
Since you worked on this and used it for the Calendar and People requests, I would appreciate it if you could share your knowledge.

*Originally created by @llvmx on 7/24/2023* I see there are some API calls for which the sapisidhash is being used. If I am not mistaken, you can bypass quota limits and other restrictions by using this type of auth method. Now I would like to know if some other API endpoints, which are hosted on clients6 or on googleapis don't work with sapisidhash, because they return INVALID_ARGUMENT with no hint as to why this error appears (even those with no parameters). I have used official API keys to generate the hash in the same way as in this project. It works with oauth, but not with sapisid. Perhaps someone does have resources on this matter? Maybe I am missing certain cookies for the request. @mxrch Since you worked on this and used it for the Calendar and People requests, I would appreciate it if you could share your knowledge.