Skip to main content
  • EN

Code =


function getNewAccessToken(clientId, clientSecret) {


return new Promise((resolve, reject) => {


const options = {


method: ‘POST’,


url: ‘https://api.box.com/oauth2/token’,


headers: {


‘Content-Type’: ‘application/x-www-form-urlencoded’


},


form: {


grant_type: ‘client_credentials’,


client_id: clientId,


client_secret: clientSecret,


box_subject_type: ‘user’,


box_subject_id: ‘8777888766’


}


};



request(options, function (error, response, body) {


  if (error) {


    reject(error);


  } else {


    const parsedBody = JSON.parse(body);


    if (parsedBody.access_token) {


      console.log(parsedBody.access_token);


      resolve(parsedBody.access_token);


    } else {


      reject(parsedBody);


    }


  }


});


});


}



I am getting the Error


}


{


error: ‘invalid_grant’,


error_description: ‘Grant credentials are invalid’


}



Please provide me a solution of it

Hi @user228 , welcome to the forum!



I do not see anything wrong with your request, here is my attempt:



curl --location 'https://api.box.com/oauth2/token' \


--header 'Content-Type: application/x-www-form-urlencoded' \


--data-urlencode 'grant_type=client_credentials' \


--data-urlencode 'client_id=h5...qi' \


--data-urlencode 'client_secret=Tqb...38' \


--data-urlencode 'box_subject_type=user' \


--data-urlencode 'box_subject_id= 18622116055'


and I get:



{


    "access_token": "92...Xz",


    "expires_in": 4238,


    "restricted_to": [],


    "token_type": "bearer"


}


So a few possibilities:





  • Your Box subject id looks more like an enterprise id than a user id, make sire you have the correct user id, or if you want to use the enterprise id (service account) then switch the subject type from user to enterprise.


  • Check you application configurations.




If you want the CCG app to impersonate users you need to have these checked:



image



image



Let us know if this helps

Reply


Terms & ConditionsCookie settings