I solve my problem by removing scope from JWT payload. Customer support can't be assigned on Team key, only individual. User should have Customer Support role and access for application. Sounds like user has role but doesn't have access for application where try send response.

Problem is solved. I use scope in jwt token ["POST https://api.appstoreconnect.apple.com/v1/customerReviewResponses"] It's works for GET requests, but not for POST or DELETE. After removing scope it's works perfect. Also answer of API 405 Not allowed don't help to understand reason of problem.

@erin-1440 Hi. Can you show your payload and your JWT, please? I have similar problem, but I got 405 - Method Not Allowed. I tried team key, individual key (Customer support role), individual key (Admin role). GET - is always ok. This is may data POST https://api.appstoreconnect.apple.com/v1/customerReviewResponses { "data": { "attributes": { "responseBody": "Thank you for your answer." }, "relationships": { "review": { "data": { "id": "00000063-092e-1705-c3e-f11e00000000", "type": "customerReviews" } } }, "type": "customerReviewResponses" } } { "alg": "ES256", "typ": "JWT", "kid": "XXXCKP997F" } { "aud": "appstoreconnect-v1", "iss": "xxxxxx7e-xxf4-47e3-e053-xxxx7c11a4d1", "iat": 1734451886, "exp": 1734453086, "scope": [ "POST /v1/customerReviewResponses" ] }

We receive status code 405 Not allowed when call POST https://api.appstoreconnect.apple.com/v1/customerReviewResponses Same answer for DELETE response. GET methods works fine. I tried team key, individual key with Customer Support role, individual key with Admin role results are same.