We would like you to provide a way in the developer console to remove the download permission from our application.
We are worried about leaking access tokens.
Our application needs Box administrator privileges. Then change the folder name or delete the collaborator.
However, it does not access the content of files in box.2 votes
After obtaining a token, you can downscope it to obtain one with a more limited set of scopes. While your parent token will still have the full scope, you can generate and use the lower-privileged tokens in your application logic. Refer to this page for details https://developer.box.com/guides/authentication/access-tokens/downscope/
Hi, currently in order to find a box user id for ONE user, we need to use
to get ALL users and then filter for the specific user.
If would be nice if we can simply query a user's box user id by the username.1 vote
There is an optional parameter called `filter_term` which can be used to retrieve a user on the basis of the name or login. See link below and a snippet from the dev docs.
Limits the results to only users who’s name or login start with the search term.
For externally managed users, the search term needs to completely match the in order to find the user, and it will only return one user at a time.
Create an API endpoint that returns information from status.box.com, so that customers can access this information programmatically.5 votes
It is possible to automate the process of listening for changes at status.box.com including for the API component. See https://support.atlassian.com/statuspage/docs/enable-webhook-notifications/
sdk = JWTAuth.fromsettingsfile('boxconfig.json')
AttributeError: 'NoneType' object has no attribute 'fromsettings_file'2 votes
It would be really nice if there was a good clean copy of the authentication methods script. The pieces and parts don't work and it is hard to figure out why. Example... Trying to authenticate with OAuth2 you can't get it to work with the examples and then jumping over to upload files doesn't jive. Aside from the Dev Token method, I can't get anything to work. HOW DO I AUTHENTICATE WITH OAUTH2?1 vote
The new documentation site has substanitally expanded and clarified information and examples pertaining to Authentication in the SDKs. Please see https://developer.box.com/guides/authentication/select/
Enterprise admins can see App Users and Managed Users in the User list in the Admin Console, but not Service Accounts.2 votes
App users are available in the Managed Users tab of the Admin Console.
Easily allow modification to a particular Box Folder name0 votes
This is possible today via the server API (update file) as well as Box Elements.
Picker, when used in single select mode does not show current access setting. Requesting access setting to be shown.0 votes
The content picker today does show the sharing permissions on the file / folder. https://developer.box.com/docs/box-content-picker
Connections uses picker in different contexts.
For files: allow only file selection, but still allow nav down folder tree. Remove the 'add file' button.
For folders: Allow only folder selection, do not show files. Do not show add files or all files button.0 votes
Please see the documentation for Content Picker: https://developer.box.com/docs/box-content-picker
We are using the file picker widget in a custom app. We are requesting the addition of a preview pane to the file picker widget so our end users can get a preview of files they are potentially adding.0 votes
While not part of the file picker itself, it is possible to invoke the content preview from within the content picker such that it appears to be part of one experience.
Create a public app that is available to members of the enterprise only. We would like to create a custom app that allows users to launch a Record Manager app that's tied to the main enterprise record software.
Currently Box only allows this to be available as a public app, which we do not want to do. We prefer to limit this app to be available to managed users of this EID only.0 votes
It is possible to create a managed user app for the enterprise’s users only. One can achieve this by creating an OAuth2.0 app and not making the app public by either sharing it on the Box app gallery or making the API key public.
If an enterprise admin has enabled "Restrict Content Creation" for their enterprise (under Admin Console > Enterprise Settings > Content & Sharing), only Admins and Co-Admins are able to create folders and files in the All Files location. This restriction also applies to the service account associated with New Box View apps. This means that if an admin wants to keep "Restrict Content Creation" enabled, they cannot use the New Box View with the same enterprise. The New Box View service account cannot be made a Co-Admin. The "Restrict Content Creation" flag also limits this user from owning any root-level folders.
If an enterprise admin has enabled "Restrict Content Creation" for their enterprise (under Admin Console > Enterprise Settings > Content & Sharing), only Admins and Co-Admins are able to create folders and files in the All Files location. This restriction also applies to the service account associated with New Box View apps. This means that if an admin wants to keep "Restrict Content Creation" enabled, they cannot use the New Box View with the same enterprise. The New Box View service account cannot be made a Co-Admin. The "Restrict Content Creation" flag also limits this user from owning any root-level…1 vote
Try using Service Accounts. It’s similar to what New Box View (App Token Apps) offer except that they manage the folders where they upload the content to. You would have to manage how they redistribute the content across different folders in their service account.
- Don't see your idea?