How to access application owner's files?
Hi,
I am writing a simple app uploading files to Box. It's meant to be run on schedule / without user interaction.
I am using Python boxsdk and JWTAuth. I want this app to be limited by privileges of the account that hosts it.
Here is the problem I have:
* With Enterprise Access + Perform Actions as Users permission I can access ANY user in the environment.
* With Application Access my application has its own file space (with its own root folder) and cannot access files that the hosting account has access to.
What should be the proper configuration?
Best Regards,
Mike
-
Hey ,
Thanks for your message. Your understanding of the situation appears to be correct. The best configuration would be to use Standard Authentication, which *does* require user interaction, but if you are able to maintain an access/refresh token pair within your application, they should only have to interact once. Once you obtain an access/refresh token for the specific user using Standard OAuth2, then you would be limited to just the one user's account as desired.
Thanks,
Jason
-
Thank you for your response.
As this script is meant to run once a week I do not want to maintain token refreshes every hour.
Since this is a service account, created purely for the purpose of this script, I am fine with putting account credentials in the script. Is there any configuration allowing such use case (with user interaction)?
Or maybe some way to grant access for the script itself to particular files / directories?
Uploading files automatically, without any user interaction, seems like a really basic use case... I can't believe that's not supported.
Best Regards,
Mike
Please sign in to leave a comment.
Comments
2 comments