1 / 20

Understanding Box applications, tokens, and scoping

Box training content for understanding how to set up applications, work with scopes, and provision tokens.

jcleblanc
Download Presentation

Understanding Box applications, tokens, and scoping

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Application Access

  2. Type of Users: Will you be working with users within an entire enterprise, or just the app? Concern Areas: Type of Users Types of Content Default Scopes Types of Content: Do you need to access and manage data within the enterprise? Default Scopes: Read / Write (A,E), Manage Users (A,E), Manage Groups (A,E), Manage Enterprise Properties (E). 4

  3. Application Scopes

  4. Scope Name: root_readwrite Capabilities: • Upload / view / download / update file versions. • Create / edit / delete collaborations, tags, tasks, comments, @mentions, task assignments, notifications, and collections. • View enterprise profile information. 8

  5. Scope Name: manage_managed_users Capabilities: Subset of manage enterprise scope • Add / view / edit / delete / activate / disable Box users. • Change primary login, reset password, change role for managed user and enterprise content. • 9

  6. Scope Name: manage_app_users Capabilities: Allows application to provision and manage its own app users. • Add / view / edit / delete / activate / disable app users. • 10

  7. Scope Name: manage_groups Capabilities: Subset of manage an enterprise scope • View / create / edit / delete groups and group memberships for all users. • 11

  8. Scope Name: manage_webhook Capabilities: Allows your app to programmatically control webhooks. • Create / fetch / update / delete new or existing webhooks. • 12

  9. Scope Name: manage_enterprise_properties Capabilities: Subset of the manage an enterprise scope. • View and edit enterprise attributes and reports, edit and delete device pinners (what devices can use native Box applications). • 13

  10. Scope Name: manage_data_retention Capabilities: View, create, and fetch content retention policies with Box Governance. • 14

  11. Advanced Application Features (JWT)

  12. Purpose: Perform actions on behalf of another user. Capabilities: Needed for full SDK functionality for user actions (As-User header) • Allows you to properly manage users, their content, and actions. • 17

  13. Purpose: For JWT applications, create individual OAuth 2 tokens for users. Capabilities: Needed for full SDK functionality for JWT application user actions. • Allows you to bypass the need for credentials in the typical OAuth 3- legged flow. • 18

  14. Authorization and Applications

More Related