Description

If you delete a guild scheduled event by deleting its associated channel (which deletes the event as well) there is no deletion event sent.

Steps to Reproduce

1. Create guild scheduled event in a voice or stage channel
2. Delete voice or stage channel

Expected Behavior

Guild scheduled event delete event should be sent.

Current Behavior

Guild scheduled event delete event is not sent.

Screenshots/Videos

No response

Client and System Information

...

Description

The permission doesn't work at all.

Steps to Reproduce

1. Create event
2. Deny permission in the channel to manage events
3. Bot can still edit/create/delete events associated to that channel

Expected Behavior

should work

Current Behavior

doesn't work at all

Screenshots/Videos

No response

Client and System Information

v9 api

We don't emit a MESSAGE_DELETE event for each message in a channel when the channel is deleted either. You should observe the CHANNEL_DELETE event and clean up any associated resources in your cache.

This field seems to be available when the stage instance is from a guild scheduled event, otherwise, it will be null.

I agree this should be documented, as it seems like there is a heavy relation between events and stage instances. In testing something else, I deleted an event while there was a linked stage instance was open and it closed the stage/removed members from the stage.

We don't emit a MESSAGE_DELETE event for each message in a channel when the channel is deleted either. You should observe the CHANNEL_DELETE event and clean up any associated resources in your cache.

Fair enough

It caused on creation of lobby too fast.

Me too.

Currently, there is no way for end users to know whether a bot can fetch memberships, presence data, and message content. With this implemented, the profile of the bot would display something like:

• cannot read messages in the servers it is in
• can fetch your presence status if you share servers with this bot
• can fetch memberships of the servers it is in

While developer portal has this info, it is currently only accessible to bot owner itself, making it only useful for ...

End users don't worry about this. End users who are far from the concepts of Discord API do not know at all that some bots can receive some data, while others cannot.

It's actually accessible to any user through the undocumented /applications/:app_id/rpc endpoint. Approved intents are exposed in flags.

Hey, sorry for bothering, but it seems to me that the issue is there again. I am experiencing hChapta loop registering a new account both from browser on Ubuntu and on my android phone.

The official client does not show them though.

Just like lambda people might not know what the "identify" scope is, but Discord shows a more friendly description when people are asked to grant access to their account. People not knowing what intents do is not an issue as it can simply be explained directly with sentences like "this bot can access your status" and the likes, maybe hyperlinking longer support articles on the topic

Should anyway be in a privacy policy of bots, it'll be more misleading saying "the bot can fetch your presence at any time" etc. and will only spark fear for end users.

Everyone should of course know what the bot has access to, but this will, in a lot of cases, be more misleading than helpful as to what the bot's main purpose is.

@GitSparTV Can you create a new issue and tag me, and provide a command definition, a payload thats failing, and any other steps to reproduce?

I am Zina and I propose a new discord feature.

Copy id feature for slash commands when right clicking one if the user has developer mode enabled

Alternatives considered
Opening network tab
Sending slash command in client
Monitoring request data and copying the id from that tab

this is not a good idea because I always in a voice-channel streaming and my user account token gets exposed when scrolling down to the request payload and some bad user can steal my user token and...

a fix should be deployed soon

we've investigated this before actually. unfortunately our current system will cause the autocomplete menu to close when the context menu opens, so it's probably not happening in the immediate future.

😭 😢
@devsnek any ideas for copying slash commands id without opening the dev tools? right now I am having to leave the voice-channel copy-id of the slash commands and join back.

• duplicate of #3698

Ian 2 tried to do it and failed

it could be done by right-clicking the "user used /stuff" thing instead of the autocomplete menu

This is fixed 🙏

Description

Commands which feature optional attachment options seem to not work as intended. Trying to omit the option and hitting the send message button forces the attachment option to pop up (including file picker), and supplying an attachment per the app's whims causes the interaction to fail anyways. This behavior does not happen on desktop, untested on the web version.

I assume these two issues are unrelated, but I am including the second issue just in case.

I enabled as much...

this is the same as #4512 which was closed without being merged

This is just gross, I am trying to test my bot, and I have to scroll an infinite amount of commands in order to be able to use the damn command, JUST DON'T SHOW SUBCOMMANDS

is it so hard to make only root command show up, AND ONLY AFTER i pick a root you show me subcommands available
dammit discord...

This is not the correct way to write feedback. Please review the code of conduct and open another discussion with a constructive suggestion if you want.

This is not the correct way to write feedback. Please review the code of conduct and open another discussion with a constructive suggestion if you want.

When this is ready for use we'll note it as such, like #4512, this PR is premature.

Bad intent revert it

name field seems to be missing in custom activities.

Also, I found this fields in Spotify activities, but I don't know what they're for.

• id
• session_id
• sync_id

@onerandomusername thanks for the report! can you provide us with an application and bot user ID?

unfortunately they removed id, platform, sync_id, and session_id from #2219, although at least id and sync_id are useful

name field seems to be missing in custom activities.

Would be useful to add that to the docs themselves

Should mention that in the docs too.

👍

Is that the only place where it's missing?

Yes

hmm

On Tue, Mar 1, 2022 at 4:31 PM mickeydarrenlau @.***>
wrote:

Bad intent revert it

—
Reply to this email directly, view it on GitHub
https://github.com/discord/discord-api-docs/discussions/3581#discussioncomment-2276458,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/AXQSAQCIKF66WV2BFGYBU3TU52ECZANCNFSM5BQB3H5A
.
Triage notifications on the go with GitHub Mobile for iOS
<https://apps.apple.com/app/apple-store/id1477376905?ct=notification-e...

Closing this as I made a mistake, name will always be present, and will be Custom Status, sorry.

What about an easier version without the more complex stuff?

That could work.

On Wed, Mar 2, 2022, 7:28 AM Jakob @.***> wrote:

What about an easier version without the more complex stuff?

—
Reply to this email directly, view it on GitHub
https://github.com/discord/discord-api-docs/discussions/3581#discussioncomment-2280158,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/AXQSAQG2TBLENM2FDRN3Y7LU55NF3ANCNFSM5BQB3H5A
.
Triage notifications on the go with GitHub Mobile for iOS
<https://apps.apple.com/app/ap...

I would like to see a boolean option which defaults to 'false' and if the user puts it in, it becomes 'true'. So instead of having to do:
/command booleanoption: true
It would be:
/command booleanoption

What do you think about this?

Hurray, the HTTP bots will be now online !!

http interaction bots have been showing as online for several months already

Can we get some sort of update on this?

I pushed out a change that should have fixed a UI bug that was showing things time out before they should. I'm not aware of any cases of the actual server-side interaction timing out before response.

In this case you can probably just make the option non-required and then interpret a missing value as false

Assuming you knew about this issue (might not the case here), I would recommend posting a comment saying that you think a new update fixed it.

Most people will probably wait till they see this issue updated, I doubt they'll randomly check or it has been fixed.

It was my intention but sometimes one forgets things. I'll close this out under the assumption that it was just reporting the client cutting off requests too soon. If someone finds that they are receiving interactions that immediately 404 when acking, I'd ask for a separate issue with:

• if you're using http interactions, x-signature-timestamp
• the interaction's id
• json of the definition for the command/button/modal/etc that was used so it can be recreated
• if you're using http in...

Currently the API allows developers to stream external voice into a voice channel. Can we allow developers to stream video as well?

Video is much more complex and changes quite often, so its unlikely we will ever be able to provide a public API.

Got it - anyway to add this to the roadmap just in case :)

Video is much more complex and changes quite often, so its unlikely we will ever be able to provide a public API.

Description

If an attachment argument comes before arguments with autocomplete, the autocomplete fails to load. If the attachment argument is last, everything works as intended.

Steps to Reproduce

Slash command with at least one attachment argument, in the first position, and another argument with autocomplete following the attachment.

Upload attachment, and see autocomplete fail to load for the following arguments.

Expected Behavior

Autocomplete should load.

Curren...

Okay that's fair, ignore my comment then!

That would be useful to have less 'Unknown interaction' API Errors caused by them timing out at the time of response.

> Attempting to omit the `COMMUNITY` [guild feature](#DOCS_RESOURCES_GUILD/guild-object-guild-features) when it was previously present will fail, unless the bot has `ADMINISTRATOR` permissions. Attempting to add this feature when it is not present beforehand will also fail for the same reason.

just extract the timestamp from the interaction id and add 3 seconds

> Attempting to omit the `COMMUNITY` [guild feature](#DOCS_RESOURCES_GUILD/guild-object-guild-features) when it was previously present will fail, unless the bot has `ADMINISTRATOR` permissions. Attempting to add this feature when it is not present beforehand will also fail for the same reason.

👍

👍

This would be better solved with an untyped/"presence" option, which is either sent with a placeholder value if the user selects it or not sent to the app at all.

It would make many commands which use options as flags easier to use, such as an option to enable extra output.

pretty sure they don't document any quirks belonging to group dms since their considered deprecated

Description

Autocomplete still bugs and uses name instead of value.

Steps to Reproduce

Happens when you switch from "no results" to previously cached choices.

See the video of the repro

Expected Behavior

Returns value

Current Behavior

Returns name

Screenshots/Videos

https://user-images.githubusercontent.com/5685050/156463662-071225ab-b970-451b-a45a-2c2f6bf22366.mov

Client and System Information

`Stable 116961 (5fb0703) Host 0.0.265 OS X 10.15.7 ...

Can confirm this is still happening, had a report from a D++ user of the same issue via REST requests:

...

Hi, @Suspense4615 I was not aware about this, could you please share some knowledge on how to set presence for HTTP bots?

you cannot set the presence; they always show with no status and in the online section of the member list, and that cannot be changed without a gateway connection

My bots are under the OFFLINE section of the member list.. what I'm missing?

I just have a "Interactions Endpoint URL" set here:

Which results in this:

Description

See this issue https://github.com/discord/discord-api-docs/issues/535

It's closed as fixed, but as the last comment says, this API is always returning null for me in the Java Discord client library...

Example code:

                DiscordClient client = DiscordClient.create( token );
                gateway = client.login().block();
                gateway.on( MessageCreateEvent.class )
               .subscribe( event -> {
                   try {
        ...

bots cannot access user locales, they are only retrievable via oauth2 or interactions. if you want to access locales in command uses then you should use slash commands and context menus.

Should there be a second link? IMO having two links to the same thing right after each other is redundant.

Slash-command-only bots

Description

RE: #4451

Hey, so I sent an email with the following text: https://pastebin.com/5h8p0DKF
I received a response from Clyde bot: https://pastebin.com/kqKPLZBP
Then I sent: https://pastebin.com/8X5A1W3b
After 22 days (yesterday) I received the following answer: https://pastebin.com/2tWhn7LW
Then I sent the following response: Its discord-owned server

But... Today my request was closed without any answers...

I'm so sorry for these issues, I know this is not the ...

@braindigitalis If you toggle message content intent on and off in the dashboard, does that change anything?

We had a bug that caused the developer dashboard to incorrectly update necessary data to serve message content over HTTP and sometimes gateway. The bug is fixed now. If your message content is not working as expected you may have to toggle the flag in the dashboard, unfortunately.

Thanks for the report. It looks like deny permission overwrites are not being properly applied for this permission. I've reached out to the team responsible for this feature, and we will followup when this is fixed.

Description

I am looking to connect with someone in the bug bounty and/or reports department to report a hack/bug I've managed to find. I have successfully acquired discord's api's key which include stripe, braintree, and ALGOLIA_KEY as well as various endpoints and other critical information. These are PRODUCTION Keys in which I'd like to report for compensation. Please reach out (discord dev team or the likes) for more information and/or details to replicate

Steps to Reproduce

I...

You can report the issue directly to them here: https://canary.discord.com/security

if you are talking about these keys, they are public and necessary for the app to work, there is no private data

<img width="490" alt="image" src="https://user-images.githubusercontent.com/11778454/156700348-e79104cd-1d34-4800-8faa-b0116b9273b5.png">

lol

Any predictions to when this will be implemented?

Any predictions to when this will be implemented?

I predict 2070 when we all move to neuralink and talk to one another via the brain waves

Any predictions to when this will be implemented?

For a more serious response, there is no ETA other than "before the end of April", since that's when Message Content Intent will be enforced after all.

Description

The member object in the voice-state-object has mute/deaf properties. It appears that their values represent the previous (guild) mute/deaf state, not the current one.

Since this is an update ..packet?, it would make sense to include the previous state, but this being an oversight is equally possible, so I'm unsure whether this is by-design or not.

Steps to Reproduce

Observe voice-state-u...

This pull request fixes spelling mistakes discovered by codespell (I manually checked and fixed them one by one).

73017c2 Fix typos (#4601) - Dorukyum

@yonilerner

We already record user-agent, but yes we'll document a way to identify interactions libraries.

Any updates on this yet? @typpo

pretty sure they don't document any quirks belonging to group dms since their considered deprecated

Group DMs are still exposed to bots when fetching an invite that goes to a group dm, which to my knowledge are not deprecated. These invites can be sent in servers, which means that a bot that filters invites by their targets is not expecting a null name for the invite's channel.

See #1639 for the same rejected change(s) and comment from night.

Description

When using autocomplete parameters, if you try to copy and paste the command anything after the autocomplete gets merged into the one parameter.

Steps to Reproduce

Set a command option to autocomplete, and try copy pasting it after running the command. As long as it isn't the last option it should run into this issue.

Expected Behavior

Parameters should be able to copy and paste properly where the arguments stay in their option rather than merge all arguments.

##...

My bad guys, I already had an issue open for this

Mind linking to the issue so others who end up here can follow along? :)

https://github.com/discord/discord-api-docs/issues/4101

Duplicate of #4101

There's numerous code review comments which have not been addressed, and given managed group dms are somewhat deprecated and not really used I don't imagine there's much use to documenting these changes anyhow.

These aren't managed group dms, though. Group DM channels are fetchable by any bot, using a group dm invite.

Description

If you set the info for the application so it is eligible to be in discovery and then put it in discovery, it doesn't get removed if it doesn't have all the required information.

Steps to Reproduce

1. Fill out everything and enable discovery
2. Remove some info
3. Check the page to show discovery status

Expected Behavior

It would be removed if the required data is no longer there.

Current Behavior

It stays in discovery.

Screenshots/Videos

_No respons...

Hello:

A few hours ago an event occurred on the Discord Developers server in which an App Discovery Sneek Peak was displayed, in addition, we were granted access to modify some parameters that will be displayed on the page when a user clicks on the bot.

One of the things that concerns me is the requirement that commands cannot contain harmful or inappropriate names.

First of all, I know that one of the Discord employees mentioned on the Discord Developers server that the NSFW commands to a...

flagging commands as nsfw is already on the roadmap (to hide them in non gated channels and to age gated users)

😕 doesn't really answer my question
I'm curious to what the use cases are 😅

@GitSparTV Can you share your command definition and example output from your autocomplete endpoint?

Description

Upon trying to update any (unverified) bots intents, I am redirected to the login page & my changes are not saved.

Steps to Reproduce

1. Go to an unverified bots privileged intents.
2. Try change them (on->off or off->on).
3. Save the changes.

Expected Behavior

Changes are saved.

Current Behavior

You are logged out & promoted to log back into the developer portal and your changes are not saved.

Screenshots/Videos

No response

Client and System ...

Description

When you have unsaved changed on the developer portal you are typically prevented from changing page until you have either discarded your changes or saved them. However, you are still able to click on the "Select App" / "Select Team" dropdowns & change the current selected application/team - Despite this visual selection, you continue to stay on your unsaved changes page.

Steps to Reproduce

1. Have unsaved changes (name update, avatar update, description update, etc).
   ...

Modals are really good for getting user input, but right now they don't give much towards explaining to the user what the modal does / will do. Currently the only options for displaying data to the user while they are filling out a modal is the title and the text components, which are fairly limited.
A description would allow more information to be presented to the user while they are filling out a modal.

Yes, I heard something about this topic, but, if I'm not mistaken, it was a very tedious task.

I think this poses way too many architectual challenges to implement feasibly.

Things like

• Discord has to send out interactions to every single application in the server
• Handling of the 100% will be happening race conditions of different applications responding
• Somehow displaying to the user what is happening
• Loading the slash command list is a blocking operation, you cannot send a message that starts with / until the list has loaded, which is already slow for some
• etc..

It would be nice if instead of bots having to register their commands through API, they could return their command list dynamically when requested through an interaction, which would give the bot more control of where, when and who is requesting their command list and what commands should be returned, and also allow them to update instantly and without limits their command list.

Hiding NSFW-marked commands and the ones you can't use (permissions) required an infrastructure rework and they mentioned it was very close to being done in yesterday's event

Thanks for the report. We rolled out a fix for this behavior.

This does not appear to be a bug with the Discord API, as we only return locale in specific situations (as noted above). For questions related to library APIs, you may want to reach out to the developers of the Discord library directly.

We received a Guild Scheduled Event with "description": null but it is not documented to be nullable, this PR changes this.

{
  //...
  "guild_scheduled_events": [
    {
      "status": 1,
      "sku_ids": [],
      "scheduled_start_time": "2023-01-13T20:00:00+00:00",
      "scheduled_end_time": "2023-01-13T21:00:00+00:00",
      "privacy_level": 2,
      "name": "test",
      "image_hash": null,
      "id": "931256650600415272",
      "guild_id": "699595207720566824",...

this affected a library https://github.com/Rapptz/discord.py/issues/7501 :laughing:

From Ian's message:

Changes as of today:

• API v10 is Available
• API v8 is Deprecated

Duplicates of #4512, #4587 (that were both closed).

Additionally, this PR is incomplete, because there are other changes in API v10 that must be reflected in the docs.
A dev will likely create a PR when they are ready to document API v10.

Description

Discord server widget shows all the stuff about server
but not the server icon :/
why
the icon is in the server widget but not in the json

Steps to Reproduce

just add server iconURL

Expected Behavior

iconURL should show the icon of the Server

Current Behavior

doesn't show icon of the server

Screenshots/Videos

https://discord.com/api/guilds/459910889924067358/widget.json => doesn't have server url

https://discordapp.com/api/guilds/45991088992406...

currently i am having problem that before my bot switch to slash command it was in 90 server but i forgot to declare application.commands scope for it so now in most server bot not can be used slash command. Is there a way around this other than re-invite it to the servers?

Currently, you will need to ask your users to reinvite your bot with the application.commands scope (no need to kick it first).

Discord will be doing a new scope migration when application permissions v2 will be fully released (however, we have no ETA of when this will happen; it may happen before or after the enforcement of the message content intent).

Description

Discord API returns incorrect position values in Channel Objects.

Steps to Reproduce

Steps to Reproduce:

1. Add your bot in a server with adequate channels.
2. make a request to GET /guilds/{guild.id}/channels
3. Sort channels by position output Channel names
4. Compare the result with your server

Expected Behavior

Channel Positions are Consistent with information viewed from clients.

Current Behavior

Some channels are reporting incorrect positions i...

Q: Did I check multiple times before reporting?
A: Yes.

Q: Am I the only one facing this?
A: No. When I shared this behaviour in Official Discord Server. Someone else tested it and encountered similar behaviour.

Channels with the same position should be sorted by id

Channels with the same position should be sorted by id

How can a channel have the same position as another?

Channels with the same position should be sorted by id

No same position was reported. Also please don't make up things without actually testing. Snowflakes and positions are not the same thing.

You'll also need to take channel types into account. Here's some logic i wrote a big ago (in javascript);

const SortSections = {
  [ChannelTypes.GUILD_NEWS_THREAD]: 1,
  [ChannelTypes.GUILD_PUBLIC_THREAD]: 1,
  [ChannelTypes.GUILD_PRIVATE_THREAD]: 1,

  [ChannelTypes.GUILD_TEXT]: 2,
  [ChannelTypes.GUILD_CATEGORY]: 2,
  [ChannelTypes.GUILD_NEWS]: 2,
  [ChannelTypes.GUILD_STORE]: 2,

  [ChannelTypes.GUILD_VOICE]: 3,
  [ChannelTypes.GUILD_STAGE_VOICE]: 3,
};

function di...

Oh, note that this logic assumes you are already force channels with a parent_id to be under the channel that parent_id refers to.

You'll also need to take channel types into account. Here's some logic i wrote a big ago (in javascript):

const SortSections = {
  [ChannelTypes.GUILD_NEWS_THREAD]: 1,
  [ChannelTypes.GUILD_PUBLIC_THREAD]: 1,
  [ChannelTypes.GUILD_PRIVATE_THREAD]: 1,

  [ChannelTypes.GUILD_TEXT]: 2,
  [ChannelTypes.GUILD_CATEGORY]: 2,
  [ChannelTypes.GUILD_NEWS]: 2,
  [ChannelTypes.GUILD_STORE]: 2,

  [ChannelTypes.GUILD_VOICE]: 3,
  [ChannelTypes.GUILD_STAGE...

This could probably do with some documentation, yes. The positions in the API are not canonicalized. Channels which are never moved do not have a position at all (e.g. you determine their position based on their creation date, which is conveniently their id). Channels also have restrictions based on their type (for example, a voice channel in the same category as a text channel can not be above that text channel). Additionally, clients only update the positions of channels that they have pe...

Description

Currently team members get every permission out there,
Discord requires you to have a 2fa code in hand to check the token of a bot but you can add team members
to the bot's team without 2fa making the current 2fa requirements useless.

Steps to Reproduce

• go to the developer portal
• add someone to your bot's team
• observe.

Expected Behavior

it should require a 2fa confirmation.

Current Behavior

it does not require a 2fa confirmation so people who are i...

This could probably do with some documentation, yes. The positions in the API are not canonicalized. Channels which are never moved do not have a position at all (e.g. you determine their position based on their creation date, which is conveniently their id). Channels also have restrictions based on their type (for example, a voice channel in the same category as a text channel can not be above that text channel). Additionally, clients only update the positions of channels that they have ...

Just spent a decent amount of time trying to figure out what the hell "Doesn't look like anything to me" means. Finally found this issue through Google searching. Still not entirely clear on what it means.

For those wondering, "Doesn't look like anything to me" is a reference to Westworld, when a "host" (robot) is looking at something that they are not allowed to process. Don't look it up unless you're happy to be spoiled, though.

Command (didn't truncate anything):

{"name":"appcmd","default_permission":false,"options":[{"name":"permissions","description":"Edit command permissions","type":2,"options":[{"name":"get","description":"See permissions of all commands or specific one","type":1,"options":[{"name":"id","autocomplete":true,"type":3,"description":"ApplicationCommand ID"}]},{"name":"set","description":"Set permission for a command","type":1,"options":[{"name":"id","required":true,"autocomplete":true,"typ...

Same on

App: 115.0 (30578) stable; Manifest: W/"bfc09e145bb2ccb0ae799981b0f9b980"; Build Override: N/A; Device: iPhone13,2 OS 15.4;

The activities bot, for example, could move a user into a voice channel without having to even request any permissions.

this doesn't make any sense. the bot would still need the Create Invite permission to create the invite, and it would be a pointless headache to get the users to authorize via oauth2, when currently they can skip all of that by just clicking a link to the invite, which is better than this request in every way. I would not make the bot use this, and this request still seems totally useless to me. literally just link to the discord.gg url directly.

Call me paranoid but, this looks nothing short of an account stealer lol....

@devsnek 😐

A proper implementation would only return a boolean (or even nothing at all), the code wouldn't be sent to the application but to Discord, which would then either let the bot know if it's valid or not, or prevent the modal from being submitted at all if it's not

While it sounds good on an open source bot, there's still a chance for phishing on closed sourced ones.
The users of the bot may not be tech savvy.
Imagine one link going to an external site which "requires" Discord authentication which triggers an interaction webhook to make the Modal popup, which will ask for the 2FA to continue.
It's a double-edged sword which can abused if the bot dev knows his stuff.
If Discord implements something like an encrypted password input field, then this ca...

While what suspense mentioned seems like a far more sane solution/implementation, I personally can't think of anything a user would do outside of OAuth2 that would prompt for a 2FA code. Even bots with [mass-]moderation functionality have limited ability over a server and its members, especially when you take into consideration ratelimits.

Assuming this isn't just a shitpost (the idea seems incredibly asinine even on a surface level), I'm curious to know what legitimate use case could come ...

Imagine one link going to an external site which "requires" Discord authentication which triggers an interaction webhook to make the Modal popup, which will ask for the 2FA to continue.

That's not how interactions work, interactions are only created by user actions (using a slash command, clicking a button and the likes). they can't be programatically created. And as mentioned in my previous mesage, Discord wouldn't return your 2FA code itself but either whether it was valid or not, or n...

I got the idea today to make an interaction response for the error message. Since modals popup and user may submit wrong information, people may want to know, what the error actually is, but don't want to close the modal and open it again. So I thought about making a response for that.

This can also be useful in other interactions, because bots can give more accurate information about the error. Yes, it is possible to do this with a message, but ephemeral messages need to get dismissed or ...

Currently it is impossible to distinguish between simply not receiving ratelimit headers and a particular route not having any specific ratelimit.

It would be cool if, with v10, Discord started sending a sentinel value in X-RateLimit-Bucket or maybe using X-RateLimit-Scope to indicate what type of ratelimits a particular route is affected by. This would mean that client libraries knows whether ratelimit headers just wasn't received, or the route is only affected by the global ratelimit...

Hey @zomien 👋 there was a fix that went out for a similar issue a while ago, so I wanted to check whether you were still experiencing this?

If so, could you share:

• payload you used to create the command
• example output from your autocomplete endpoint
• app version you're using

We'll discuss it this week, stay tuned :)

This PR documents Twitch Stream Preview, YouTube Stream Preview, and Spotify Album Cover activity asset images.

Related discord.js pr: https://github.com/discordjs/discord.js/pull/7184

Description

When I login to dev portal, It redirects to login screen even I typed correct information and worked.

Steps to Reproduce

1. Open https://discord.com/developers/applications
2. Login with mail & pass, or QR
3. Observe

Expected Behavior

Logged in and see application

Current Behavior

Redirects to https://discord.com/login?redirect_to=%2Fdevelopers%2Fapplications

Screenshots/Videos

https://user-images.githubusercontent.com/59691627/157197800-bb4ab353-f...

Tried clearing cache/cookies?

tried, but it didn't working

Description

When responding to a component interaction with type 7 and the data is invalid the discord client won't show that the interaction had failed.

If i change the type to 4 the client will show that it failed

Steps to Reproduce

receive a component interaction and respond with:

{
type: 7,
data:{}
}

Expected Behavior

The discord client would show that the interaction had failed

Current Behavior

The client stops the loading state

Screenshots/Vi...

I'm curious why this is not documented since it includes more information over /oauth2/applications/@me and does not require any authentication.

Hello, I wanted to make a suggestion for the new modals they are adding to discord. I wish I could put those selection menus inside the modals.

I use modals as a bug report form and being able to directly upload log files, screenshots, or videos to be sent with the modal submission will drastically improve the user experience!
Currently, users have to upload the file to an external service like pastebin, imgur, and youtube and paste a link into the modal.

• Adds description column to the application flag table
• Updates Flag -> Name to be consistent with other tables

Addresses #4254

Description

All the images in the app do not appear and my friend was going to send me something important from her bot.

Steps to Reproduce

I do not know :(

Expected Behavior

Maybe stability on the platform

Current Behavior

Images are not showing

Screenshots/Videos

![Screenshot_20220308-170502](https://user-images.githubuserconten...

Media proxy is down due to GCP issues. Check discord status page for info.

3s delay makes this functionality useless. Hope Discord devs are agree with community.

3s delay makes Slash functionality useless. Hope Discord devs will agree with community.
This delay doesn't even cover connection time in some cases. I even don't speak about making requests to DB on the bot side.

Some of these partial outages such as the one today would break a lot more functionality than what the outage has caused. Again, many bot developers had all their commands break because of the typing endpoint 403ing with html when most of the command functionally works fine. I think it’s necessary to let developers know of the random htmls from cloudflare when you disable endpoints so they don’t have to be on-the-clock with discord status updates and update real-time to work around issues th...

Furthermore, I would consider changing the schema of objects by adding random fields breaking for certain structures, especially when you parse the json responses into a certain preset schema/class. Developers should be told that random fields could be added at any time to avoid the pitfall of their code breaking if it’s set to use a certain schema.

Its best practice (and recommended) for libraries to ignore unknown/undocumented fields. If a library chooses not to do that, or a bot using the raw API chooses not to do that, that's on them as undocumented fields are added and removed literally all the time.

As for the other complaint, its an outage, unexpected behavior is expected. Its not production behavior, it doesn't need to be documented, and can't be documented. When things break, weird things happen, deal with it.

Its best practice (and recommended) for libraries to ignore unknown/undocumented fields. If a library chooses not to do that, or a bot using the raw API chooses not to do that, that's on them as undocumented fields are added and removed literally all the time.
I see nothing on the current docs that say such a thing is best practice, and the Discord API is the only place where I notice these changes constantly. Other APIs (Twilio, stripe, or the Windows API do not introduce random fields in...

3s delay makes Slash functionality useless. Hope Discord devs will agree with community. This delay doesn't even cover connection time in some cases. I even don't speak about making requests to DB on the bot side.

Defer your response(s) so that you have more time.

Small clarifications around webhook name field, and cleans up copy ordering to match the other webhook methods

Addresses #4293

The usernames and nicknames documentation is out of date, the substring discord has been recently disallowed.

@Jupith Just for usernames and nicknames, or also for webhooks? After testing and looking through some of the source, it seems that the discord substring is currently permitted for webhook names (clyde appears to be the only explicitly non-allowed one) 🤔

If it's only relevant to usernames/nicknames, that may be best as a separate change.

Yeah it doesnt apply to webhooks, but just thought since you were refrencing the section in this pr it would be a good time to update those docs

Fair point, I went ahead and updated the list on that page as well

It is currently undocumented that a user must be able to "Send Messages" as well as "Use Application Commands" in order to invoke a user command. This comes as an additional complication because of the intersection of channel permissions and user permissions. Attempts to invoke a user command in a channel which the user cannot speak in (e.g., a rules channel) will result in a permission denied error, as if the underlying application command provider had insufficient permissions.

This is c...

I actually like this idea but also agree with @Suspense4615. For safety measures, the code would not be shared with anybody but instead would return a boolean to the developer if it's correct or not. Or Discord could always return true. Instead, the client would notify the user saying the code was incorrect and to try again, therefore we would always get true

Allow Developers to create a custom error message. So in the event of an issue/error, the bot would respond with a custom error message rather then 'The application did not respond' or 'Unknown Interaction'

I'd support this if and only if bot developers are not involved in any chain of the process apart from

1. Bot asks discord to display a mfa prompt to user within the discord client
2. Discord asks the user to complete an mfa prompt (app codes for some people, email codes for others)
3. Discord sends the bot (true|false), that is the only info that a bot should receive.
4. Bot decides to (A) proceed with spicy action, (B) Not proceed

A real world use-case I can see would be if a use...

Example Image

Example Link

discord://-/command/name?=example/required?=string=string&user=619241308912877609&role=629747280316071938
*I'm not good with URL stuff, feel free to comment a different example&

I agree that discord can send a boolean. But a dev can create a model showing
enter discord Auth code. Everyone won't verify that the prompt is from bot or discord as both are coming after a user action like clicking button on submitting the model. Doing like this can cause security issues.

Getting the same problem here. It just doesn't work in Firefox. I only get one login to Discord for chat but that's it - connecting to the site again logs me out, and I also can't use the dev portal.

Exactly my concern @imranbarbhuiya

Moreover, the whole point of using 2FA in commands is to prevent compromised accounts from using the commands right?
But if an account with 2FA enabled got compromised in the first place, there's a high chance that they have the means to get the 2FA code as well. Which totally defeats the purpose of enforcing it in a command.

But if we're using it just for the sake of confirmation, something like "Type the command name to confirm" should suffice.

Perhaps discord could take a page from github and add a /rate_limits route that returns the global ratelimit, It would be nice to see this feature, as discord obviously has the data, but not exposed anywhere.

Discord could just not let your modal go through if you havent filled the 2FA code, so no 2fa data would ever be sent to the app

I mean that's basically already possible, text inputs already can do that

In the case of an error, you should be fine by just sending a regular response saying there was an error. I don't think this requires a special response type.

Description

API return Internal Server Error on try to upload .zip file in application commands.

Steps to Reproduce

upload zip file in application commands

Expected Behavior

file upload successfully

Current Behavior

api server returning Internal Server Error

Screenshots/Videos

Client and System Information

Windows 11 Pro 21H2 : build 22000.493
D...

Please implement this as priority.
Lack of a description prevents a lot of migrations from user input via messages to Modals.
Since Modals can only be sent in the initial response to the Interaction, it's not even possible to send a prior message with the description.

It's better UX for both the developer and the user.
Instead of having a ton of different designs for errors, there is 1, a clear one.

I don't think different bots having different error designs makes their errors unclear, the same way that bots having different designs for help pages and other features don't make them unclear. It's not a lot of code for the developer to implement either, mostly just wrapping the handler in a try-catch statement and reporting the error in the catch block.

It's just better UX, that's all.

Is the current system bad? No it's not, but that doens't mean that improvements can't be made.
Having an universal error message is better, just like having universal button styles is better.

If the user is scrolled back far enough (around 50 messages), the client will no longer show ephemeral messages. This means it is nearly impossible to actually respond with an error on those kinds of situations. This applies to all context menu commands and all component interactions. Errors could be shown identically to current client errors under a button for example, which is arguably a better user experience.

It's just better UX, that's all.

I can't see how this would improve the UX. If anything, it would make it harder to tell whether an error came from Discord or the bot, and would limit flexibility in what and how information is provided with the error, because of the inability to use an embed. Having several lines of red text on a dark background isn't great for accessibility either, so messages would have to be shorter than with a regular response.

Of course, bots wouldn't have to u...

could you give an example?

you can do a followup as a response, but at that point, they have a massive modal in their view, thus preventing them from seeing the emoherall message, this is especially important on mobile.

I don't see why you couldn't let the user choose the default error message or you error messages 🤷
and then tell if it's from the bot or discord.

yes exactly

could you give an example?

How would that work for context menu commands?

I don't see why you couldn't let the user choose the default error message or you error messages 🤷
and then tell if it's from the bot or discord.

If they look different, it's immediately clear. That is, in my opinion, better than the client having to explicitly show it.

How would that work for context menu commands?

Context menus currently don't have any error responses that work consistently. Which is a general issue with the way they were implemented, and something that needs to be addressed regardless. Context menus in general have a very bad user experience already, not having a way to respond with an error is part of the problem there.

For context menus you should be able to just send a regular response already, like you do with slash commands and other interactions.

Refer to my previous message:

If the user is scrolled back far enough (around 50 messages), the client will no longer show ephemeral messages.

I don't want to explain this over and over, you cannot reliably present error responses for context menus and components due to chat scroll state issues. Please stop arguing for worse user experience.

You said it didn't have "any error responses that work consistently", I interpreted that to be a different problem than the one mentioned earlier. I do see your point that there isn't a great way to present errors for context menu commands, and I agree it should be solved, but that seems to me like a different problem to the one discussed here, and one that should have its own discussion.

Currently, Modals can only be sent in the initial response to an interaction.
While this seems like a good UX practice as it makes us respond to the interaction as soon as possible, it's a strict limitation. There are edge cases where we need to defer the response and then send the Modal in a followup.

Here are 2 example use cases:

1. We need to a perform a slightly time consuming computation (or maybe a DB call) before populating the labels for the TextBoxes on the Modal.
2. We want to...

just extract the timestamp from the interaction id and add 3 seconds

Deduping with #3663

• duplicate of #3698

Ian 2 tried to do it and failed

Thanks for the suggestion, but closing this as it is not a request specific to the API. Product feedback is aggregated at feedback.discord.com

Thanks for the suggestion, but closing this as it is not a request specific to the API. Product feedback is aggregated at feedback.discord.com

If you have support built for it, why aren't your interactions REST already? Discord built this system with the gateway pain points in mind. Furthermore, the cases where Discord goes down only for bots and not for users aswell are so rare that it just doesn't make sense to have a backup in place.

If you want commands to be more reliable, just use REST as the default. It's a dedicated service for bots and will probably prove itself as the more reliable option (to us, it already has).

your request was blocked, you probably are not using the correct User Agent format.

We are happy with JSON right now. I have not seen evidence that JSON deserialization speed or payload size is a problem for most bots

We are happy with JSON right now. I have not seen evidence that JSON deserialization speed or payload size is a problem for most bots

advaith you make it sound so bad!

The reason it isn't fully possible is because our application discovery window is a popout modal itself; it requires focus to be set in the text editor, and will disappear when focus is lost. On top of that, opening a context menu on a context menu is a little tricky

This is in process here https://github.com/discord/discord-api-docs/discussions/4456

This is in process here https://github.com/discord/discord-api-docs/discussions/4456

Maybe with the new slash perm thing. Theoretically a context-menu can be added on the manage panel , to copy the id.

is this still a problem?

Sorry, we don't want to document this - developers shouldn't set this, and this format may change in the future

This seems like a error in programming or setup somewhere, so I am closing

7f05019 Adds error 10065 (#4530) - Jupith

074e930 Misc documentation fixes, mostly around optiona... - A5rocks

c5b0eab Update Select Menu placeholder max characters f... - krittick

d2d18e1 Fix header merging with table (#4522) - Commandtechno

Might be a variation of #4504

d7b47a3 fix typos in Voice.md (#4565) - jonobarel

@Bad-Boy-Codes What endpoint is this? You should be able to see it in the icon field when getting a guild. There's more information about image data linked in that table as well which may be helpful.

yeah it is.

Field is safe to add, but the indention on the fields below icon have an extra space or two.

we're adding this

19ca14c Update error 50008 description (#4533) - almeidx

f95cd03 description field is optional and nullable fo... - Lukellmann

What is "some info" in this context? Are we talking about a subset of fields in particular or simply any field?

I believe this issue is now resolved as of earlier this week. Please let us know if you continue to experience issues.

Thanks, we've passed this feedback to the Activities team and will discuss further with them.

6f37f43 Add community feature warning (#4570) - Jupith

c23036e Add note re user permissions and user interacti... - hlieberman

I know what's up with this but the fix is a little hairy so it might take a bit to get it right.

79783ee Correct embed limits section (#4549) - SQKo

What gus said earlier is actually inaccurate - position is optional, but if not provided, it will default to the next highest value for the given channel type.

gus is me. it is true for roles though. be wary when sorting discord objects.

Did you have webook.incoming scope missing or did you see extra applications.commands.update scope? Can you provide the flask server code for repro?

Might be blind but i cant see any extra spaces, mind doing a code suggestion?

what do you mean by "removed"? Currently we keep your filled info even the app is no longer eligible for app directory, wiping filled info immediately feels off.

There aren't any extra spaces, it's just how github renders it.

My bad, bamboozled by github ui then.

In my testing, I removed the terms and privacy policy urls after enabling discovery on my application. What I meant by removed is that discovery would get disabled on it.

03d6540 Add application flag descriptions (#4623) - shaydewael

In my testing, I removed the terms and privacy policy urls after enabling discovery on my application. What I meant by removed is that discovery would get disabled on it. I do not know what other fields this would apply to because I didn't test with any others, but I would assume it applies to all required fields.

ah for that we're going to build an alert/mod...

6e64791 Update Community Resources per #4456 guidelines - typpo

Sounds good. Thanks!

After some more testing I have to correct myself. You get all the scopes the app is authorized for but not the webhooks.incoming scope. applications.commands.update only showed up because the scope was already given the app I tested with.
But the bug still persists: When testing with a fresh application the scopes field is empty while it should contain at least webhook.incoming as the docs imply so.

Here is the code you requested:

@app.route("/webhooks")
def webhoo...

great catch, thank you for documenting this!

42a20ae Document guild_scheduled_event_id field in st... - Victorsitou

6168e86 Add premium count to example invite object (#4493) - Jupith

this will be fixed in the next api deploy

Thanks for the report. The widget endpoint does not currently expose this information, so this behavior is working as intended. You can refer to the documentation at https://discord.com/developers/docs/resources/guild#get-guild-widget-object

This behavior appears working as intended. As you are creating a new invite every 5 minutes, it is logging a new invite creation every 5 minutes. You can check for validity of the invite by resolving it rather than creating a new one on an interval.

Description

The text "Once you authorize, you will be redirected outside of Discord to: null" shows up when using a redirect_uri that does not begin with http(s).

I have added my custom URI scheme redirect to my application in the Developer Portal.

Steps to Reproduce

1. Create a new application.
2. Inside a mobile

Expected Behavior

The "once you authorize" text should show my Application name, not null.

Current Behavior

The "once you authorize" text shows up a...

This behavior appears to be working as intended. The client falls back to displaying the channel name and icon when it does not know the online and member counts, and it does not know these counts on invite creation. You can try this with any channel invite, not just stage channels.

This has been deployed.

This behavior is unfortunately working as intended. The returned access grant returns you the scopes granted to the user. For guild-level scopes, like bot, applications.commands, and webhook.incoming the scopes pass through entirely and are not part of the access grant.

These issues are intended for reporting bugs related to Discord's APIs and developer features, not ban appeals. If you have been banned from the Discord Developer community but still need assistance with the Discord API, I would recommend filing a support ticket to the Developer Support team at https://dis.gd/contact (select Developer Support).

looks like some arcane chrome bug that returns a string "null" for origin:

> new URL('mycoolapp://oauth').origin
< 'null'

so this is just a documentation issue?

bf3e2ec Clarify webhook naming restrictions (#4625) - shaydewael

Bump. Any chance that this will ever be implemented?

Description

When turning an application into a bot the token doesn't show, causing you to regenerate the token .

Steps to Reproduce

1. Turn an application into a bot.
2. Profit.

Expected Behavior

The token shows.

Current Behavior

The token doesn't show.

Screenshots/Videos

https://cdn.polar.blue/ylu4AoIeoYmJp06Y.mp4

Client and System Information

Version 99.0.4844.51 (Official Build) (64-bit)
Windows 11

this is working as intended.

How so, I can't access my token when I create my bot which doesn't make sense in my opinion.

Many services that expose a public API do this. Discord just finally caught up.

Well yes I know that hiding the token after the first creation is an intended feature on the new dev portal, and I'm glad that it's been introduced. But Discord doesn't even show you the token on creation forcing you to regenerate the token.

What's the issue here though? If you've just created the bot, there's no drawback in regenerating it?

What's the issue here though? If you've just created the bot, there's no drawback in regenerating it?

At least with most services I've used (I may just use bad services I guess), when you create something (say, for object storage, when you create bucket), you're shown the API key for that once, and afterwards you have to have to regenerate the token (in Discord's case with 2FA). What Discord has done here is effectively put up a giant roadblock of inconvenience for doing so much as gener...

i think "a giant roadblock of inconvenience" is a bit abusive, all you have to do is grab your 2FA code once more. you usually don't create new bot accounts for that to be so much of an issue

I think message IDs of deleted are intentionally not logged, to faciliate traceless deletion.

Already suggested it in #4615

I think I've narrowed down the root cause of this issue. Is this now fixed when you login to the developer portal at https://canary.discord.com/developers/applications?

Thanks for the feedback. As stated previously this behavior is currently considered working as intended. Since it does not appear to be a bug I am going to close this issue.

Description

When editing a description that isn't the default language, providing no other settings have changed, you will not be prompted to save your changes until you edit another part of the application.

Steps to Reproduce

1. Go to the app directory page of a verified bot
2. While a default description is already set (and saved), add a description for another language.
3. See that the save your changes prompt does not come up until you save another setting

Expected Beha...

Yes - that worked.

Thanks for confirming. This issue should now be resolved on https://discord.com/developers too.

This issue should now be resolved.

Since this is intended, shouldn't the string be adjusted to no longer state that the token is shown once at the beginning though?

Commands are written in a channel, so you would to define the channel in these urls.

it means when the token is created, not when the bot is created.

Wait, isn't the token created when the bot is created? I still don't understand how this is intended.

Its more effort for them than its worth to add a check to see if there is already a bot created under the application, so you could just repeat the create bot request and access your token whenever u wanted, bypassing the need for a 2FA code

All store channels were deleted

This issue should now be resolved.

It's still showing null in my case.

it may be your browser cache, but I can confirm it is fixed:

+1 to @Suspense4615

When you include a permissions=0 in the bot authorize URL, it won't create a role for the bot automatically.

However, when you include a non-zero value, and uncheck all the permissions before continuing, it will still create the role. This is annoying as a server owner, since I can't use the new feature of adding bots in-app on Desktop, because by default most of those links include some permissions, and if I don't want to be forced to have an undeletable role, I can't do anything about...

I can't repro this bug - I just added carl-bot in the client (using the Add to Server button) and unchecked all of the permissions, and no role was created.

Tested on:
desktop Canary 118279 (d2f321c) Host 1.0.45 Windows 10 64-Bit (10.0.22000)
and web Canary 118378 (27d1b9e) Windows 10 64-Bit

Don't forget to make sure that <18 developers can't use this feature!

what if it's a team

What link did you use for the invite?

Here one example:

https://user-images.githubusercontent.com/12614053/157790950-a8e8c672-f3ea-4b6e-a3ad-4ea333a8c8f9.mp4

Stable 118205 (081ceba) Host 1.0.9004 Windows 10 64-Bit (10.0.19044)

Actually it seems to work as expected on the web oauth page for me too now - that's quite new, it hasn't been for a few years

i'm also unable to reproduce this. if you've been testing this a bunch, make sure you cleaned up the bot and roles before trying to invite it again?

Description

The video permission is not listed in the bot add GUI as a permission and therefore it is always granted when asked for (!), after an authorization has been finished.

Steps to Reproduce

Create an OAuth URL for authorizing a bot to your server with the permissions=512 or any other permissions including the 512 permission.

Example with GiveawayBot:
https://discord.com/oauth2/authorize?client_id=294882584201003009&permissions=512&scope=bot

Go to the link, clic...

We figured the problem with @advaith1 in DMs and I created a bug issue in #4638 about it with steps to reproduce

(@devsnek)

We figured the problem with @advaith1 in DMs and I created a bug issue in #4638 about it with steps to reproduce

(@devsnek)

Description

JSON API output data limited to display only 100 active voice chat users.

Steps to Reproduce

Open a Discord servers' JSON API URL with 100+ active voice chat users.
ie. discord.gg/English

Expected Behavior

Expected Example:
Server has 233 active voice chat users > Output should be displaying the correct output of 233 users.

Current Behavior

Current Behavior Examples:
Server has 252 Active Voice Chat users it shows 100 users.
Server has 98 A...

In the recent survey on Discord Developers, there was a question about the possibility of closing Applications and Bots in the Discord.
The question was: How would you react if Discord shuts down Applications and Bot?
Does anyone have any update about how serious this question is?

it's just theoretical to see people's opinions, they aren't gonna actually do it

Just here to lend weight to advaith’s answer and confirm it’s correct 😄

Currently, the description for slash commands and their options do not support markdown.
Having markdown support here would allow developers to highlight important words or add examples with code blocks (for example a prefix for an option like ytsearch:)

Currently, markdown doesn't render and users just see this (screenshot is taken from alpha 116200 on android)

This is intended. The data structure literally says "communication disabled until."

link buttons should be available in timeout tho

I can confirm that this issue has not been resolved on android even after updating to the latest version, the slash attachments on android are completely unusable.

What endpoint are you talking about?

Most endpoints are paginated and need to be queried multiple times with the after query string over a certain threshold to get the full dataset.

I think they might be talking about widget? which is limited to 100 users

This seems to be at least partially wrong for request_to_speak_timestamp: we received the following JSON:

"voice_states": [
  {
    "user_id": "...",
    "suppress": false,
    "session_id": "...",
    "self_video": false,
    "self_mute": true,
    "self_deaf": false,
    "request_to_speak_timestamp": null,
    "mute": false,
    "deaf": false,
    "channel_id": "..."
  }
],

So I can confirm that request_to_speak_timestamp is nullable, I don't know if it is a...

Don't get me wrong, I don't want to insinuate anything, but were you aware of what the question marks stand for @jonobarel? (The title and the description could indicate that you weren't, since they don't mention anything about optional or nullable.)

Here is what they stand for:
https://discord.com/developers/docs/reference#nullable-and-optional-resource-fields

005a258 Revert "fix typos in Voice.md (#4565)" - typpo

Reverts discord/discord-api-docs#4565

168eb70 Revert "fix typos in Voice.md (#4565)" (#4641) - typpo

Here are our current plans. If an item is on this list, we're actively working toward it!

Last updated: 2022-02-02

Developers

• [ ] New option types

  • [x] Floating-point number

  • [x] Attachment

  • [x] Autocomplete - choices populated dynamically by the application

  • [ ] Datepicker

• [x] Text input interaction

  • [x] Desktop

  • [x] Android

  • [x] iOS

• [ ] Age-gated commands - a way to mark commands NSFW s...

You can also have a message with a button for that (and open the modal in response to the button's interaction) but that's not ideal ux

It has been over three weeks. Why is the change in API version states (v10 added, v8 deprecated) not reflected in the docs as linked in the comment this is a reply to?

revert-4565-patch-1

@Lukellmann Actually I was not aware. I tried to look for it in the documentation and didn't find it so I guess that one's on me :)
Thanks for clarifying!

Description

I register a parameterless slash command and try to use it, but allthough the registration worked fine, it cannot be used but fails with an error even before the bot is contacted.

Steps to Reproduce

Trying to send PUT request to https://discord.com/api/v9/applications/652517092599267377/guilds/653665297894473764/commands with body [{"name":"ping","description":"Ping back","type":1}]

Sent PUT request to https://discord.com/api/v9/applications/652517092599267377/gu...

I observed the same behavior.

But in my observation, the problem is in the updating of the commands, when initially created without parameters, the problem does not happen.

However after performing an update on the command, making it without parameters the error starts happening.

I noticed the same error messages reported above on the desktop and mobile client.

And as reported, the problem seems to be between the client's interaction with the server, as no event arrives via websoc...

I can confirm that the command first was available with parameters and was updated to a parameterless one

@devsnek Solution: Convert the guild ban count limit into an overall size limit instead of a rate limit (for example, 10 bans per every guild plus 2 more per every 5, capping at 1k).

Here are our current plans. If an item is on this list, we're actively working toward it!

Last updated: 2022-02-02

Developers

• [ ] New option types

  • [x] Floating-point number
  • [x] Attachment
  • [x] Autocomplete - choices populated dynamically by the application
  • [ ] Datepicker

• [x] Text input interaction

  • [x] Desktop
  • [x] Android
  • [x] iOS

• [ ] Age-gated commands - a way to mark commands NSFW so they wi...

And a friend of mine also confirmed that this is the reproducing procedure

Wrong link here

These features have technically been released, in-app authorization has been out for months.

To work-around the issue, you can first delete the command and then recreate it.

Correct, the server widget. Using the URL to extract the number of users online and voice users online, is there a reason it is limited? If so, this is obviously more of a feature request.

Elgato Stream Deck offers the usage of plugins. One of the Discord plug-ins made by Krabs.me > https://www.krabs.me/streamdeck-plugins/discord-member-count

• Allows you to display the number of Online members and active Voice Chat users on the Stream Deck.

After contacting the developer of the plug-i...

thanks, fixed

Description

I created slash command bot with bot, applications.commands scopes. And create slash command for guild, and command not showed so I create commands as application scope. And still not showing

Steps to Reproduce

const serverless = require("serverless-http");
const express = require("express");
const app = express();
const { CreateRateUseCase } = require("./core/usecase/createRateUseCase");
const nacl = require("tweetnacl");
const getRawBody = require(...

It looks like the user doesn't have the "Use Application Commands" permission in the server; this is not related to the bot.

@advaith1 How to user add "Use Application Commands" permission on server? :)

You can modify role permissions in Server Settings: https://support.discord.com/hc/en-us/articles/206029707-Setting-Up-Permissions-FAQ

for Discord support go to https://dis.gd/support

Please just fix this....show subcommands only when I navigate to a specific root command, I really couldn't care less how many tag subcommands this bot has...this is basic UX

Guild Scheduled Events were a good idea. Unfortunately Discord has not went far enough with them, so very few servers are using them atm. I have a few suggestions after implementing them to my bot and reading user feedback in the past few weeks:

1. Events that take place in a voice or stage channel DO NOT start automatically atm, despite the last screen of creation stating it. If this is intended, please re-think that. Why would it not start automatically ?

2. You can hide events fr...

Technically not a "monopoly", but Discord Devs have previously stated they would like to fix the clutter of the Slash Commands UI, but are waiting on App Commands Permissions V2, among other things, to ship first beforehand.

That's sad given that it's taking so much time...April 30th is approaching and this feels like a major UX issue for slash commands to enforced with...

Another important use case:

In API v10, existing attachments must be specified when editing a message with new attachments. Any attachments not specified will be removed and replaced with the specified list.

What this means is, you can no longer easily append files to a message without having a list of the existing attachments in the message.

Therefore, if the message attachments are not returned in the content of the Interaction response, appending files to an interaction messag...

Description

When trying to create a group DM channel with proper credentials, it errors with 500 Internal Server Error.

Steps to Reproduce

1. Get bearer token(s) with the gdm.join scope.
2. Make request

Expected Behavior

A new group channel

Current Behavior

Internal Server Error

Screenshots/Videos

Client and System Information

Python v3.9
reque...

Hey there, so a feature I think would be pretty cool would be the ability to "mention" slash commands, just like how we can mention members, channels etc.

What the mention would provide users is possible a way to simply click on the mention to open up an invocation menu, and a hover on the command mention would provide some sort of information, like the name of the command and what bot it relates to.

That's a duplicate of #4351

Ah right, sorry about that

That's a duplicate of #4351

@advaith1 Thank you! I found the solution. I checked use application command on permission of channel edit. I tried to check use application command on server configure beside server name, but it not worked.

this one
<img width="928" alt="image" src="https://user-images.githubusercontent.com/18900976/158104734-53130d52-222d-4b4c-9dc1-dbd331c6c108.png">

not this

I agree with community members in this case, but not due to networking issues.

One major benefit to interactions is that you can deploy discord bots to serverless functions (lamda, azure, etc.). Function instances like these have a 'cold start' delay that can take a few seconds to receive and route an interaction and startup the function instance.

Here are three options for them that I have no preference:

1. Change the global default for all interactions.
2. Allow an application ...

fwiw, CloudFlare workers effectively don't have any cold start time, and work quite well for interactions.

But what if my bot needs to access a database or other services?

You should defer the interaction within 3 seconds, retrieve the data, and then edit the message.

The widget endpoint used to return all users, but unfortunately due to abuse patterns being actively exploited was changed to return limited, anonymized data. We have no current plans to return additional data in this endpoint again, and would recommend using a bot user in the server if you need additional information about the server.

The modal title can be 45 characters long or fewer

channel filtering will be better applied in the next app deploy, which should resolve this concern.

This is not behavior that can be easily fixed as the limit is conditionally applied based on user limits, so I am marking this as wontfix. 4000 is the upper limit that can be sent on this specific field. All string fields in our API have an upper limit, even if we are applying further restrictions when processing the message.

this should be fixed in the next api deploy

d3d94bc fixes #2990 - night

cc @hemu

Lobbies appear to be getting created properly. If a lobby remains empty for 15s, it will be closed.

this should be fixed in the next api deploy

We changed this UI a while back, and non-required options are now displayed collapsed. It is not perfect, but we are also working on additional chat input improvements which will further address this concern in a future update.

I am not able to reproduce any issues with the PATCH /channels/:channel_id/messages/:message_id route. Send Messages permission restricts the ability to send new messages, but does not prevent existing messages from being updated or deleted. To remove access entirely, you will need to remove view access to the channel.

Thanks for your question. At this moment crossposted messages do not support message components. It is possible we will look into these in the future if we support layout components, but for the time being they are not synced from the source message.

Thanks for your report. We store options as a list internally, so it's fairly unlikely that our API is not persisting mutations properly when order changes. If you are still having issues, please provide a minimum viable reproduction using raw curl commands that we can use to test with.

This appears to be fixed now per my testing. If you're still having issues, please provide specific client and version information

Closing this since public stage lurking has been removed.

When a client fails to send an interaction due to a missing bot or unconfigured interaction endpoint it receives a 503 unavailable error today from the API. From my local testing I am not able to reproduce this behavior any longer.

Thanks for the report. This behavior is actually considered working as intended for v1 of the permissions system, as default_permission was intended to take the place of the everyone role. In v2 of the permissions system currently in testing, we're removing the concept of default_permission. Be on the look out for more updates regarding these changes soon.

This should be fixed in the next API deploy.

Thanks for your report. It appears that audit log reasons are properly being stored in the audit log for this route. Please note that reasons do not always display in the client due to client limitations, but they are available via the API.

Thanks for the report. This looks like it is most likely a client bug as the API is correctly stripping the emoji syntax into :smile:.

Why has not been documented?
Is it client only or something else?

In addition to the suggestion, I'd like to add that if modals to contain a description, then the components should become optional. Right now, modals can only be for inputting information, but using them as a confirmation of some action is also good UX and is used by some of the built-in features of the Discord client. (A modal will need to have either a description or components or both. If the modal has no components, it is better to change the button label from Submit to Confirm)

![imag...

Instead of Submit/Confirm, it would be even better if we could provide custom text for the button.

I've been thinking about this option. Full access to style and label of the button would be ideal. However, the number of characters would be very limited.

I would like it if it's implemented as component, because if it's component we can do this:

Test Modal

Description here...
[Foo ]
Other...
[Bar ]
[Hoge ]

This problem also reproduced when changing banner or server name

Stable 119130 (9d59161)
Windows 10 64-Bit (10.0.22000)

The first one is the total count of member messages for statistics. Add to member field messageCount This information is not confidential.

Second - Add the ability to fetch member messages on the guild like channel , but fetch only messages of the specified member without filter.

I am unable to reproduce the stated issue at present, but if problems persist please provide minimum reproduction steps we can use to reproduce the behavior. Keep in mind that updates made to global commands are delayed, and may take time to appear in servers.

Thanks for your report. At this time it appears that using OAuth2 tokens on the PATCH route properly return an HTTP 401 error. If you are seeing other behavior, please provide minimum reproduction steps so that we can further investigate.

Thanks for the report. Interaction successes and failures strictly occur when there is an issue in the send -> receive flow for interactions. The interaction here did succeed, as the bot replied to it with a valid interaction callback. However, since the bot failed to supply a valid message payload its update was not persisted in interaction post processing. Validation errors can occur in numerous post-command operations (including deferred operations bots run within their platform).

I think I have found where the bug is.

When the guild is updated, the client receives GUILD_UPDATE event, but the problem is that the event doesn't send any application_command_counts field and thus the client seems to clean that data.

application_command_counts data before the GUILD_UPDATE:

application_command_counts data after the GUILD_UPDATE:
![image](http...

This will be fixed in the next API deploy for future audit log events.

7596ff:7596ff/add-role-name-char-limit

#4607

This should be fixed in the next API deploy.

This should be fixed in the next API deploy.

This behavior looks to be resolved now:

{"code": 50035, "errors": {"0": {"options": {"0": {"_errors": [{"code": "MODEL_TYPE_CONVERT", "message": "Only dictionaries may be used in a ModelType"}]}, "1": {"_errors": [{"code": "MODEL_TYPE_CONVERT", "message": "Only dictionaries may be used in a ModelType"}]}, "2": {"_errors": [{"code": "MODEL_TYPE_CONVERT", "message": "Only dictionaries may be used in a ModelType"}]}, "3": {"_errors": [{"code": "MODEL_TYPE_CONVERT", "message": "Only dicti...

This issue is resolved in permissions v2, which is currently in testing. We will be releasing more information soon™.

Closing this issue as the issue concern should now be mitigated.

Thanks for the report. As stated earlier this behavior appears working as intended, as unspecified fields are interpreted with defaults in mind. As for why garbage fields appear discarded, it is because our API ignores fields which it does not know about. Similar to consumers ignoring new fields, our API will also ignore new fields. This helps keep backwards and forwards compatibility.

This is now fixed.

This issue appear to be resolved as of now.

It looks like we are already checking for the suppress embeds flag when resolving embeds. If you are still seeing this behavior, it is most likely a race condition and your change to wait for us to finishing resolving embeds is likely the best fix. As we intentionally do not lock around message mutations and last writes win, this is unfortunately not easily fixable in our infrastructure.

Description

When trying to fetch an attachment with Cloudflare Workers I get a 403 error.

I'm not sure if you are blocking Cloudflare Workers to prevent abuse/scraping but this attachment happens to be uploaded through an interaction to my bot so maybe at least let the bot authorise itself with it's token so it's able to get attachments uploaded with it's own interaction.

Steps to Reproduce

Run this javascript code on a cloudflare worker:

const attachment = await...

I believe this issue is already fixed.

I am not able to reproduce this locally. It may already be fixed. If you're still having trouble, please most some minimum viable steps to reproduce the behavior.

Thanks for the report. This behavior is currently considered working as intended. CloudFlare workers have been used for hotlinking attachments in the past to bypass our Firewall, which is why we prevent their access. You may need to rely on a separate server for retrieval of attachments at this time, as CDN links are not able to be authenticated.

It would be nice to have the compliment of the NOTIFICATION_CREATE IPC event so as to be able to cache and clear notifications properly. Currently there is no way to tell if someone has read through a previously cached notification on their client. Channel ID and Message object would be a reasonable dispatch payload for this.

Thanks for the report. As this was considered working as intended I am going to close the issue. However, it may be worth opening a discussion post if you think this is functionality we should change.

b6cb8a5 fixes #4481 - night

This behavior looks intended as we do not perform stripping from the user's input before sending it along to bots. The reason commands may "strip it" is actually due to parsing of user input from the text area, as spaces are used as delimiters there.

Issues like this tend to be caused by degraded infrastructure, and this issue does not seem prevalent after the initial report. If you're still having issues and can provide us with reliable reproduction steps, we can take a closer look.

These are great suggestions, thanks for thinking these through and sharing. Some of our initial plans included some of these, e.g. (3) and a few others on this list we did consider but decided against for the first offering of events. Shared these suggestions with the team 👍 we'll have a discussion about where these can fit on our list of improvements we want to make

These are great suggestions, thanks for thinking these through and sharing. Some of our initial plans included some of these, e.g. (3) and a few others on this list we did consider but decided against for the first offering of events. Shared these suggestions with the team 👍 we'll have a discussion about where these can fit on our list of improvements we want to make

62a2f8e Document slash command localization - infinitestory

Adds documentation for submitting and retrieving slash commands with localizations.

87ec4b4 fix links? - infinitestory

07b60c4 prettify tables - infinitestory

is this live in the client yet?

no, it is currently being tested by lib & large bot devs

| Field               | Type    | Description                                                                                                                                                                                                             |
| ------------------- | ------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------...

| default_permission?        | boolean                                                                                                                                        | whether the command is enabled by default when the app is added to a guild (default `true`)                          | all         |