-
Recently active
I'm trying to find the best way to list all items in Box that exist under the root folder and have been updated after a specific date. I've looked into a couple of API endpoints, however:1. `/search` - It seems to require a query string or metadata template.2. `/metadata_queries/execute_read` - It seems to require setting up a metadata template.My goal is to query items based solely on their update date, without relying on any metadata. Is there a straightforward way to achieve this using the Box API?
I have an application running out of my Oracle based IdM system that updates group membership. This process broke down due to the process using an OAUTH2 based authentication. I have create a new app that uses different auth, and now we can read all the groups and group members. However, when we try to add a group member, we get:403 - access_denied_insufficient_permissions - Access denied - insufficient permissionThis is from an Oracle PL/SQL app, using the APEX_WEB_SERVICE.MAKE_REST_REQUEST function. The same one that we used to get the list of groups and have been using for 10 years to create users and groups. The app gets a token (if needed - tracks the expiration date in the database), and makes the request. It also logs the token, url and request body. If I copy and paste these values into Postman and POST it, it works fine - same token, same URL, same body. I expect I am missing (or including) some header or cookie, or some other magic, and the API which causes the failure.
I have a question regarding rate limiting for license-based APIs. If, for example, a custom app developer is on the Individual (free) plan, user A of the custom app is on the Enterprise plan, and user B is on the Business plan, would the API call limits be as follows?User A: 100,000 API calls per month because they are on the Enterprise planUser B: 50,000 API calls per month because they are on the Business plan Reference information regarding API limits: https://www.box.com/pricing
I have one folder which has a blue icon. I made a fresh one and it's yellow.The blue one works for API -- I am able to upload files to it.How do I change the yellow one to be the same? Seems the blue one was shared with my API user, but I don't know how to do that again -- it was a long time we did that one.We have only one actual user on this platform.Thank you.
Description: I created a new OAuth 2.0 app in Box with the exact same scope and permissions as a previously functioning app. However, when I try to download files using the new app, I receive the error: "access_denied_insufficient_permissions". The previous app worked perfectly with no issues.Steps to Reproduce:Created a new OAuth 2.0 app in Box with the same scope and permissions as the original app. User grants permissions to the app. Attempt to download a file via API call.Expected Behavior: Files should download successfully, just like they did with the original app.Actual Behavior:Download attempts fail. The following error is returned: "access_denied_insufficient_permissions".Additional Information:The permissions and scope for the new app are identical to the old app, which is still working correctly. The issue began after switching to the new app. I have verified that the OAuth tokens are correct and have the appropriate permissions.Please advise on how to resolve this issue a
◆BackgroundWe provide a service that displays a list of folders in Box and uploads files specified by the customer. We received an inquiry from a customer regarding the following issue:On 8/21, 8/26, and 8/29, the service was temporarily unavailable due to an error. It was restored over time and became usable again. What could be the cause of this?◆Our Investigation ResultsUpon investigating our application logs, all incidents were due to the following error:HTTP Status: 403Response: "error":{"code":"AccessDenied","debugMessage":"{\"error\":\"service_blocked\",\"error_description\":\"The application is blocked by your administrator\"}"◆Executed APIPOST https://api.box.com/oauth2/tokenThe error occurred during the refresh of the access token.◆Questions1. Under what circumstances would an administrator temporarily block access?2. Are there any specific settings in the customer's Box administrator configuration that we should check?◆Additional InformationIf a Box administrator had prohibi
Hello Box Community,I'm currently working on integrating with the Box API. I'm using a free Box account and have successfully obtained an access token using the /oauth2/token endpoint with the following parameters:grant_type: client_credentials client_id: <my_client_id> client_secret: <my_client_secret>My custom app is configured with OAuth2 authentication, and the access token is returned successfully with these 3 parameters. However, when I try to use this token for most API calls, I receive a 404 Not Found error.The only API call that has worked for me so far is:GET /collaborations?status=pending For other endpoints (e.g., retrieving files, folders), I consistently get 404 errors.Has anyone faced a similar issue when using the client credentials grant type, especially with a free account? Do I need to enable specific permissions for my app or use a different authentication approach for certain endpoints? Any guidance on resolving this would be greatly appreciated!Thank y
Hello,The application is attempting to delete the exiting file’s metadata and create new metadata instance for the same file. This periodically results in WinError 10054: An existing connection was forcibly closed by the remote host. try: client.file(file_id=cloud_file.id).metadata().delete()except: passapplied_metadata = client.file(file_id=cloud_file.id).metadata().create(file['metadata'])Question is, what could be causing this error, is this a server configuration issue, API call timing, etc.
Hi, I want to call api to change ownership of file but I saw only editor and viewer option, suppose I assign someone as editor using api and then i delete file from my folder then it will delete from others account too. Is there any other way to tackle this situation
Our company creates a Workspace folder for each user that is owned by a central service account. I’m trying to build a script with Box CLI and PowerShell to delete a user’s Workspace folder after we delete their account to free up a license. Every time I try to get the folder details or delete the folder, I’m greeted with a d_ prefix on the item and it can’t find the folder. If I try to just get the folder, folders:get still attempts to add a d_ prefix and folders:items is probably incorrect. I’m signed into CLI as our global admin account which owns this content, so it shouldn’t be a permissions problem. If I do a folders:items 0 as the given user, I see the workspace folder and ID. The code imports a CSV of folders that I’ve pulled already. I’m still new to the CLI so obviously I’m doing something wrong but I don’t know why it’s adding a d_ prefix to the content. I’ve tried to add a Trim() to the folder ID, but the folder ID shows correct in the text output before the actual dele
Hi,I’m trying to use the python API to download files from a collaborator shared folder. I’m using a free developer account. I made an app and it was authorized (by myself). It was working fine in March 2024 and stopped working when I tried today (Sept 13 2024).```auth = CCGAuth(client_id='xxx',client_secret='xxx',user='xxx')client = Client(auth)user = client.user().get()"POST https://api.box.com/oauth2/token" 400 77{'date': 'Fri, 13 Sep 2024 17:49:32 GMT', 'content-type': 'application/json', 'strict-transport-security': 'max-age=31536000', 'set-cookie': 'box_visitor_id=66e478e2429fb8.44475236; expires=Sat, 13-Sep-2025 17:49:32 GMT; Max-Age=31536000; path=/; domain=.box.com; secure; SameSite=None, bv=PARTNERS-28114; expires=Fri, 20-Sep-2024 17:49:32 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure, cn=33; expires=Sat, 13-Sep-2025 17:49:32 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure, site_preference=desktop; path=/; domain=.box.com; secure', 'cache-control': 'no-
As I understand it, the Enterprise plan includes a limit of 100,000 API calls per month. Upon reviewing the Admin Console, I noticed there are "Chargeable" and "Non-Chargeable" API calls. Could you please clarify if "Non-Chargeable" API calls are also counted toward the 100,000 API calls per month limit?
Goal : Try to fetch the retention policy on a file if there is one.When creating the App I enabled manage_data_retention scope and I am sure that there are files under retention policies.Even though File information in UI is giving retention policy information, GET Get file information This APi is not returning any retention policy information I tried to fetch all the files under retention policies and use query like file_id to narrow down the retention policy on file.GET List file version retentions But the response I am getting is: { "entries": [], "limit": 100, "order": [ { "by": "file_version_id", "direction": "ASC" } ] } I tried to fetch file_versions under retention policy assignment but that is giving API used : GET Get files under retention {"type": "error","status": 403,"code": "access_denied_insufficient_permissions","help_url": "http://developers.box.com/docs/#errors","message": "Access denied - insufficient permission","request_id": "---"} IN the scopes documentatio
It is possible to make API calls and create custom apps with a free account (Individual), but could you please answer the following questions?What are the API call limitations? What are the differences between free and paid accounts in terms of what can be done with custom apps created?
i have a customer that want me to download his files 100M how can i know my throughput , on how many request per min / per day , is it per client or per application.how can i know the maximum requests i can make per day ?
I have a question regarding rate limiting for license-based APIs. developer.box.com Rate Limits - Box Developer Documentation Explore the Box APIs and SDKs to use for app development, API documentation, developer support resources, and access the Box Developer Console Is the license-based API rate limit after publishing a custom app related to the plan that the party issuing OAuth (i.e., the developer of the custom app) has signed up for, which increases the count when making API calls from the app? Or does the contracted plan of the user of the app affect the API call limit?
I’m using OAuth 2.0 and I have verified that the program is making the API call with the correct folder ID beforehand. This program was working for me yesterday, so nothing has changed on my end. I am just a one admin user business account, so I’m pretty sure I have all the correct permissions. Any help would be amazing, thanks.
By using node sdk , file is uploaded and then after uploading file , I would like to get that uploaded file id. File is uploaded successfully response code s200. Althought I try out , I cannot get that uploaded file id. I cannot understand how can I get data from return Promise<Object> data type.Therefore, could you support and find out solution for that issue. My code snippest is as below. // Initialize the Box SDK var sdk = new BoxSDK({ clientID: sdkConfig.clientID, clientSecret: sdkConfig.clientSecret, appAuth: { keyID: sdkConfig.appAuth.keyID, privateKey: sdkConfig.appAuth.privateKey, passphrase: sdkConfig.appAuth.passphrase } }); var appUserClient = sdk.getAppAuthClient('user',userId); var stream =fs.createReadStream(newPath); // upload file’s path var parentFolderId = parentFolderId
I would like to preview content of file when searching, like actual box search screen.can anyone tell me how can I do this?
Hi!I would know how the throttling/rate limit on a user basis (1000 API calls per minute) is applied when you use a JWT application (service account) to act on behalf of another user by leveraging the as-user header.The limit is applied to...The service account itself Or the impersonated user (as-user)And if I create another service account, the user based limit is reset for this new account (1000 API calls per minute)?
I am working on a PowerShell script to automate archiving files that are 5GB each. I am working directly with the API in PowerShell since BoxCLI does not utilize chunked uploads. When running the “POST Upload Part of a File” command for the final chunk of a file, I am getting an error that the content-range is invalid. The final part of the file is not the same length as the rest of the parts, and the documentation states that is an allowed exception. All initial parts upload without error, and return the expected values for the upload. When I run the final part using a content-range header value of “83886080-95925607/95925607” I get the following error:{ "code": "range_out_of_bounds", "message": "Part with offset 83886080 and size 12039528 exceeds limits of file size 95925607", "request_id": "8642639592d5d19e401d2d252ba83641"}It looks like the API is ignoring the higher bound value provided in the content-range and using the higher bound that would be set if using the full pa
Hello!If anyone has worked or have been working on retrieving the Collaborations Report using Box API in Python and not from the Admin Console? If yes, I’m looking for possibilities to create the report and your knowledge/suggestions would be greatly appreciated!Thank you,Suvidha Vaddula
I have some Python code that has successfully been making API calls for months (to specifically start a Workflow). It suddenly stopped working the week before last. When I went to investigate, the code that gets me an access token has suddenly stopped working, returning the normal error of {'error': 'invalid_grant', 'error_description': 'Grant credentials are invalid'}My question is, is there some kind yearly “account refresh” I need to do? Or is there a backend token I am not aware of that needs a refresh? I did check and my client secret, client id, and service account id are all correct. Here is a simplified version of the code. def get_access_token(client_id_var, client_secret_var, service_account_id): #This URL gets us our access token # Define the URL url = "https://api.box.com/oauth2/token" # Define the request parameters payload = { "client_id": client_id_var, "client_secret": client_secret_var, "grant_type": "client_credentials", "box_subject_type"
Hello!If anyone has worked/ have been working on retrieving the Collaborations Report using Box API in Python and not from the Admin Console, I’m looking for possibilities to create the report and your knowledge/suggestions would be greatly appreciated!Thank you,Suvidha Vaddula
I'm the developer of an online logbook for pilots. For years, I've had oAuth2 support to allow users to back up their data to Dropbox, Google Drive, and OneDrive. I'd like to add Box.com as an option. The technical piece of this is pretty straightforward - but one thing I need is a Box.com logo that I can use in the UI where people set up the oAuth connection. Dropbox, Onedrive, and Google Drive all grant permission to use - and provide approved logos! - for this legitimate purpose (with conditions, of course!). I can't find anything about how to do this with Box.
Already have an account? Login
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.