Retrieving content from box repositories - content owned by user outside of the domain
My team is creating an application which will pull content from Box repositories. One of the requirements is to pull all content that is in a given user's Box folders (all files and subfolders).
This was working fine with an "Enterprise"-access and "perform actions as user" enabled in our Application access token.
A large folder was shared to the target folder. That folder is "owned" by account from a different Box environment.
So, we have "domainA" which is our domain. Content from "domainB" was shared in to an account in "domainA".
When we try to pull the content from that folder we receive an error: "access_denied_insufficient_permission".
This makes me wonder if, because those files technically live in a different environment, if we need to have rights in "domainB" in order to access the content. However, thinking about the "perform actions as user" privilege makes me think that this should work.
Are we trying to do something that is not supported?
-
Based on the user case, I think this might have to do with the permission levels that domainA was granted when the collaboration was set up from domainB. Here's a handy chart that shows the different permission levels and capabilities. While it shows that all levels can see items in a folder, I believe there might be some underlying metadata being written to the files on search or access. To test out if this is what's going on I would suggest setting up the collaboration of the folder at "editor" level and see if you still get that error.
Please sign in to leave a comment.
Comments
1 comment