Box Status

Service Account insufficient scope error with CCGAuth in Python

フォローする
新規投稿
Cyrille Debray (ADED)

Hello, 

I am using the Python SDK to upload files to Box through a Service Account.

To this effect I created a custom app in the developper console, had it authorized by my enterprise admin. 

Authentication Method: OAuth 2.0 with Client Credentials Grant (Server Authentication)App access level: App access only
Application scope: Write all files and folders stored in Box

From the Box UI, the service account was given Editor access to the target folder through its mail address (note: co-owner and uploader roles have been tested as well)

A python module was created in order to upload/download files from the targeted folder using the CCGAuth client 

CCGAuth(
client_id=CLIENT_ID,
client_secret=CLIENT_SECRET,
enterprise_id=ENTERPRISE_ID,
)
 
With these settings upload and downloads operations could be carried out without any issue until this week: we are now receiving the following error:
'Bearer realm="Service", error="insufficient_scope", error_description="The request requires higher privileges than provided by the access token."'

Upgrading to the latest version (3.7.0) did not solve the issue.

Nor did refresh the secrets.

Using the CCGAuth client stills allows for getting all metadata about the folder (including confirming that the service account has the Editor or co-owner permissions on the folder).

 

Is there a workaround to this situation ?
Thank you in advance for your support ! Please let me know if you need additional details

0

コメント

5件のコメント

日付 投票
  • Rui Barbosa

    Hi,

    Was your Box application recently created on a free developer account?

    Can you check if your enterprise id is 0?

    We had to temporarily disable some features on the free developer accounts.

    It should be back soon.

    Best regard

    0
    コメントアクション パーマリンク
  • Cyrille Debray (ADED)

    Hello,

    Thank you for your reply !

    The application was created with an enterprise account indeed, the enterprise id is not 0.

    At the moment I'm applying for reauthorization to see if it solves the issue, but if in the meanwhile you see another path I can explore it would be awesome !

    Thank you for the support !

    0
    コメントアクション パーマリンク
  • Cyrille Debray (ADED)

    Update: the issue was resolved after the application was re-authorized by my enterprise Box admin.

    There must have been some bug of some sort at some point. (the application was authorized and signaled as so in the dev console)

     

    0
    コメントアクション パーマリンク
  • Rui Barbosa

    Hi Cyrille,

    What often happens to me is that I change something on the application configuration and I forget to re-send it for approval.

    I'm glad that it is working now.

    Best regards

     

    0
    コメントアクション パーマリンク
  • Cyrille Debray (ADED)

    Hello Rui,

    This is a very plausible explanation, thank you very much !

    That would explain the issue, I'll keep that in mind in the future.

    Thank you for the support !

    Best regards

    0
    コメントアクション パーマリンク

サインインしてコメントを残してください。