Technical Support

Hello, I have a project which dynamically retrieve POAP links inside a QR Code (only one). When the user scans the QrCode, it already redirects the user to its poap link claiming site. The thing i'm struggling on is this: If i have this link ->http://POAP.xyz/claim/example, how can i verify if "example" is already been minted? I cannot retrieve any kind of informations about address, email or something else, the only thing we know is the event information, because we'll create it. I was checking inside the APIs but i didn't find anything similar to what i need, what i was going to implement, is a scheduler that every X minutes will go validate the "example" and if it is not already minted it will be available again for scans. Thanks a lot Dario

I successfully obtained an access token from Auth0 and am now trying to access the following protected endpoint, but am getting a 403: https://documentation.poap.tech/reference/geteventpoaps-2 Here is the command I'm running: ``` curl https://api.poap.tech/event/73821/poaps \ -H "X-API-Key: $apiKey" \ -H "Authorization: Bearer $accessToken" -H "Accept: application/json" \ -H "Host: api.poap.tech" ``` And the response: ``` {"Message":"User is not authorized to access this resource with an explicit deny"} ``` Is there additional configuration/setup needed before I can use this endpoint? Thanks!

Hello, When trying to retrieve my Auth Token using the curl command as per your email, I'm getting the following error: {"error":"access_denied","error_description":"Client is not authorized to access \"$client\". You need to create a \"client-grant\" associated to this API. See: https://auth0.com/docs/api/v2#!/Client_Grants/post_client_grants"}% Could you help urgently with this please? Many thanks Phil

HI guys, I was trying to access qrcode based api. but it is asking for audience, client_id and client_secret in oauth/token to generate access token. What is this?

Hello, We are using POAP API for some time, and around last week we starting to get CORS errors: `Access to XMLHttpRequest at 'https://api.poap.xyz/actions/...' from origin ... has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.` Tried to switch to api.poap.tech, didn't help. Can't find anything in your documentation / help. Could you give a suggestion where to look for a solution?

I created a test POAP with a secret claim word. I activate the POAP and am able to successfully claim it via iOS. However, when I try to claim it via the API (/website/claim POST) it returns 404 Secret Not Found. Anyone able to help?

Hello, I'm Lemon from Guild we are currently troubleshooting a gating issue with a POAP drop. the dropped POAP is not visible by the explorer/gallery and users who claimed can't seem to validate they hold this asset because the API returns an empty response. I created a POAP with the same settings and claimed on my wallet and I can get a response and gate with it. My POAP id: 100411, theirs: 45588 Why there is no response for theirs? I would guess the private event but it has nothing to do with it. I'm asking for technical help with the API. Thanks in advance, Lemon

👋 I'd like to generate client-side code for the POAP API. It's seems like readme.com supports both. Is there a .json or .yaml API description file I could download in order to do so. Thanks in advance. Mario

Hello, my name is Roy and I'm working on a web3 project to allow a specific address to mint a POAP based on an on-chain event. We are looking to build a system that whenever an X event is emitted in a smart contract, we allow minting a POAP for that wallet address (sender) dynamically. I see Delivery might seem like a good option for token-gating minting, however, it appears to be a manual drop, is there a way to programmatically add addresses to the delivery list triggered by an event, which would refresh the allow list in real-time? If Delivery is not an option, I wanted to check if there is a good path to accomplish these checks. We could potentially handle this off-chain but wanted to confirm if this is something we could enforce within POAP. Thank you!

I am testing an app locally and correctly generated the accessToken from the OAuth endpoint. I am following the docs to use this token to retrieve data. I get the following data in response to my request : { message: "'$myToken' not a valid key=value pair (missing equal-sign) in Authorization header: 'Bearer $myToken'" } Where I replaced my own access_token generated previously with $myToken in the message. Am I doing something wrong with the token ? The API endpoint I'm using is https://api.poap.tech. Thank you for your help,