Is there a way to avoid the box grant page for custom box apps for oauth 2 authentication?

Answered

Follow

New post

neil_works

• August 15, 2019 08:34

Is there any way we can avoid the grant page and create user access tokens? I redirect to the server but I don't want the grant access page.

0

• 

  Kourtney

  • August 15, 2019 08:40

    The grant access page is required for standard oauth2 applications. You would need to leverage oauth2 with JWT to bypass this. 

   

  Best, 

  Kourtney

  Box Technical Support Engineer

  0

  Comment actions Permalink
• 

  neil_works

  • August 15, 2019 09:01

   

  But what kind of BoxAPIConnection do I need to get the user-specific token? I would like to reflect the folders on their box service account into the app.

  0

  Comment actions Permalink
• 

  Kourtney

  • December 18, 2019 12:30

   If you want to get a token for a specific user, this is done in the JWT assertion.

  You will want to set the the box_sub_type to user and the sub to the user ID of the user you want the token for. Also, you'll need to ensure you have "generate user access tokens" enabled in the configuration tab of the dev console. If you don't already have it enabled, enable it and ensure you reauthorize your application in the admin console. 

  0

  Comment actions Permalink

Please sign in to leave a comment.