Subject: Inquiry Regarding Box Application Authorization
AnsweredI am Utsumi .
I am reaching out to confirm specifications regarding the implementation of Box. Currently, we are developing an application to manipulate files and folders on BOX.com using APIs. In this process, we need to acquire an access token and would like to confirm the specifications regarding this process.
According to the Box reference documentation, when a user employs a custom application for JWT authentication, they are required to obtain a JSON file from the "My Apps (JWT)" section in the developer console. This JSON file contains the client ID, client secret, private key, etc., which are used to generate a JWT assertion. By passing this assertion to the endpoint, a token can be obtained in response.
We followed the above steps, but upon requesting the assertion to the endpoint, we received the following error:
{"error":"invalid_client","error_description":"The client credentials are invalid"}
This indicates an error either in the information from the JSON file used for authentication or in the authorization of the application. Upon attempting to authorize the application, we found that the "Authentication" section is not available on the settings page of My Apps. As a result, we were unable to resolve the issue following the references and Box support solutions.
Is the feature of application authorization provided as a standard function in Box, or is it only available in higher-grade editions? We are considering migrating to a higher edition of Box if necessary, and would appreciate your guidance on this specification.
We apologize for any inconvenience caused and thank you in advance for your assistance.
Best regards,
-
Hi Utsumi,
Welcome to Box Community and glad to assist!
For any API-related inquiries, please contact our Developer team through forum.box.com.
Thanks for posting!
Please sign in to leave a comment.
Comments
1 comment