Multi Tenant Application Design with Box
Hello,
I'm working on the design of an application and wish to use Box for content management. This application will have multiple organizations as users and then each organization will have its own users. I would like for each organization to be associated with its own Box enterprise so that each individual organization's content will be segregated from that of other organizations within Box.
Is this possible with the Box APIs? If so how would I go about setting up and using such an architecture as my developer account seems to be associated with only one enterprise?
-
Good afternoon ,
I understand that your application will be published on the BOX apps list and the authentication will be based on OAUTH 3-legged? So you will be using the authenticated managed users and not application users.
If that is right, then the structure where the content will be created is based on the specific user granting access to his/her folder structure.
Thanks
-
Good morning ,
then, if you don't want the user to authenticate the only alternative I see is that you do a mapping between real users and application users (authenticating those via JWT).
You would need to know each user to which company belongs and use different authentication jsons.
Your application will need to be authorized at box instance level.
Thanks
-
as explained, you will have to chose to authenticate a user with Box or not.
If you were to authenticate a user (ideally a Box admin, but any user will do) then you can store content in that user’s enterprise. If that user is an admin, there are possibility to then share that content with other users in that enterprise as well.
If you don’t want to expose to your users that Box is being used, then you need to store all data with your enterprise. You could set up an App User for each of your clients, and then store the data for that client within the folders owned by that App User.
Please sign in to leave a comment.
Comments
4 comments