SDKs and Tools

I can’t change redirect urls, all action fail, can’t add, can’t remove, can’t edit ​​​Box Developers Consolewith browser request Box cfg RequestResponse Body 

I’d like to report that it’s impossible to authorize third party app using Android WebView. All Android apps seem to be affected by that unless they use external browser or Box app for auth. Regular flow should be: Login page → enter credentials → Grant access pageCurrent broken flow is: Login page → enter credentials → Blank page and no authorization code returned I was able to capture error log from js console, I guess this prevents the grant page from showingmain-preload.f0bdd4e4aa.js:69 Uncaught (in promise) TypeError: Cannot read properties of null (reading 'getItem') at 91049 (main-preload.f0bdd4e4aa.js:69:37140) at y (runtime.d0fed8b796.js:2:146219) at 60972 (main-preload.f0bdd4e4aa.js:69:9428) at y (runtime.d0fed8b796.js:2:146219) at 31988 (main-preload.f0bdd4e4aa.js:8:41008) at y (runtime.d0fed8b796.js:2:146219) at 38736 (main.89da41b464.js:1:213) at y (runtime.d0fed8b796.js:2:146219)91049 @ main-preload.f0bdd4e4aa.js:69y @ runtime.d0fed8b796.js:260972

i have a shared Folder created by different enterprise.i have created JWT app in my own account and trying to access this folder.Facing 404 and not able to access this shared folder. Any solutions?

Hello, we are using the box content previewer as well as cookiebot for our application. Recently, the content previewer stopped working when a user rejected not necessary cookies. Interestingly the file to be previewed is still loaded and we can even see it in the dom structure:The bp-is-invisible class never gets removed though. If we remove it manually, we can see the file preview on the page. After some time we end up in this stateWe are currently using version 2.106.0. With approved cookie consent everything works fine.We also tried different browser and machines - all with the same problem.The file type also does not seem to matter as we have the same problem for pds.

Hi,I’m trying to find a way to restrict a range of files.Using a down scoped token like this: List<String> scopes = new ArrayList<String>();scopes.add("item_preview");scopes.add("item_download");List<TokenRestriction> restrictions = new ArrayList<>();for (String id : fileIds) { String resourceUrl = "https://api.box.com/2.0/files/" + id; restrictions.add(new TokenRestriction(scopes, resourceUrl));}ScopedToken downscopedToken = api.getDownscopedToken(scopes, null, null, restrictions);boxToken = downscopedToken.getAccessToken();I can’t find the class of the TokenRestriction.import com.box.sdk.TokenRestriction;   is not available.I’m using version 5.9 of the java SDK.Is there a solution use TokenRestriction or other way to restrict a list of files?Kind regards,Marcel​​​​​​​

Hi, I need to restricting folder renaming for user after creation. Is there any SDK API available to call or any other option.ThanksSampathkumar s

Hi Team,I am currently investigating the best security practice for the Box Java SDK into our enterprise application and have a question regarding private key handling and PKCS standards.We are evaluating secure key management approaches and would like to understand whether the Box Java SDK supports authentication using private keys in standard PKCS formats, specifically: PKCS#1 (RSA private key format) PKCS#8 (Private-Key Information Syntax Specification) More specifically: Does the Box Java SDK natively support loading private keys in PKCS#1 or PKCS#8 format for JWT-based authentication? If PKCS#1 is not directly supported, is PKCS#8 required? Does the SDK support encrypted PKCS#8 keys? Are there any recommended best practices from Box for handling private keys in Java (e.g., conversion requirements, keystore usage, or specific security providers)? We are particularly concerned about enterprise-grade security compliance and compatibility with standard Java security libraries.

Having a problem when I try to open MSOffice files through the web application and BoxTools. I can open files in Office for Web but when I try Office for Desktop I get this message:  “This action couldn’t be performed because Office doesn’t recognize the command it was given”I can open the files using Windows File Explorer through Box Drive. Any suggestions or ideas?   

Application that persists User Access and Refresh token works with .Net SDK v10.1.0, fails with :"The given key 'Retry-After' was not present in the dictionary" error at System.ThrowHelper.ThrowKeyNotFoundException[T](T key)   at System.Collections.Generic.Dictionary`2.get_Item(TKey key)   at Box.Sdk.Gen.BoxRetryStrategy.RetryAfter(FetchOptions fetchOptions, FetchResponse fetchResponse, Int32 attemptNumber)   at Box.Sdk.Gen.Internal.BoxNetworkClient.<Box-Sdk-Gen-INetworkClient-FetchAsync>d__3.MoveNext()   at Box.Sdk.Gen.Managers.FoldersManager.<GetFolderByIdAsync>d__8.MoveNext()   at Program.<<Main>$>d__0.MoveNext() in C:\Users\xxxxx\source\repos\BoxTestTokenStore\Program.cs:line 28 A sample console test app code fragments to recreate: Simple Model for token persistence:namespace BoxTestTokenStore{    internal class TokenData    {        public string AccessToken { get; set; } = string.Empty;        public string RefreshToken { get; set; } = string.Empty;    }}C

This is an old question from stackoverlow which uses boxselect aka box file picker popup. The usage is very simple and straight forward but very old. But when i went through the dev docs none of them showed how to use the box file picker only using client id. Below example shows only via access token. In integration apps page it mentions “strongly recommend that you do not send it to an end-user client for both primary and secondary access token”https://developer.box.com/guides/embed/ui-elements/picker/#sample-html if I use the client id in above example, no files are loaded. Now how do i integrate box in my web app. 

Our in-house service implements a Python SDK for creating folders and uploading files to BOX. User inputs consist of the target BOX folder path and the file to be uploaded. We execute the Python SDK using the "API execution account" provided by the user and upload the file to BOX. The processing logic works as follows: when the input folder path is "/Test/User", we first check if a "Test" folder exists at the root of the "API execution account". We then verify if a "User" folder exists directly under "Test", and if it does, we upload the file to that "User" folder. If "User" does not exist, we create it directly under "Test" and then upload the file. For example, if both "Account1" and "Account2" create folders named "Test" and grant collaboration access to the "API execution account", the root of the "API execution account" will display two "Test" folders. In this scenario, when the input folder path is "/Test/User", the "API execution account" cannot determine which "Test" folder to

Could you please provide guidance on BoxSDK?When retrieving folder IDs using BoxSDK, we are encountering an issue where multiple folder IDs are returned even though only one folder should exist.The following method is being looped, and more than 200 folder IDs are being obtained.Since we have specified modified_at for sorting, we suspect that this issue occurs because the timing of folder updates overlaps with the timing of the loop that retrieves folder IDs. Is this assumption correct?Also, could you please advise on how to avoid this issue?method　　：　BoxClient.SearchManager.QueryAsync()parameter　：　limit:200,sort: "modified_at",offset:[1+200*n]

Hello all,I’m integrating Box in one iOS app using BoxSdkGen for swift (box-swift-sdk-gen).I have successfully implemented authentication and the upload - both small files and chunked big files, however it seems I can’t find anything in the docs or exploring the source to give me a way to track the upload progress. So my question is is there a way I'm missing to do that or any other workaround - probably implementing my own logic based on swift’s network tasks and so on.Thanks 

I have install boxsdk python package by ‘pip install boxsdk’. But Still got error like ModuleNotFoundError: No module named 'boxsdk'Python 3.10.13pip 23.0.1 from /Users/elei/.pyenv/versions/3.10.13/lib/python3.10/site-packages/pip (python 3.10)Successfully installed boxsdk-10.0.1 This is a python example:from boxsdk import OAuth2, Client oauth = OAuth2(    client_id='YOUR_CLIENT_ID',    client_secret='YOUR_CLIENT_SECRET',    store_tokens=your_store_tokens_callback_method,    access_token=persisted_access_token,    refresh_token=persisted_refresh_token,)client = Client(oauth)

Can somebody help me what’s wrong with my below code? I am getting error: PS C:\Script\UploadToBox> python UploadtoBox2.pyTraceback (most recent call last): File "C:\Script\UploadToBox\UploadtoBox2.py", line 36, in <module> main() File "C:\Script\UploadToBox\UploadtoBox2.py", line 31, in main folder = client.folders.get_folder_by_id(folder_id) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "C:\Users\sajkumar\AppData\Roaming\Python\Python312\site-packages\box_sdk_gen\managers\folders.py", line 425, in get_folder_by_id response: FetchResponse = self.network_session.network_client.fetch( ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "C:\Users\sajkumar\AppData\Roaming\Python\Python312\site-packages\box_sdk_gen\networking\box_network_client.py", line 85, in fetch request: APIRequest = self._prepare_request( ^^^^^^^^^^^^^^^^^^^^^^ File "C:\Users\sajkumar\AppData\Roaming\Python\Python312\site-packages\box_sdk_gen\networking\box_network_client.py", line 148, in _prepare_request hea

I having an issue connecting  When ever i call boxJWT.AdminTokenAsync().GetAwaiter().GetResult() I get this...Box.V2.Exceptions.BoxAPIException: 'The API returned an error [BadRequest | .029b2b393ff5677f7723883563acadb4] unauthorized_client - This app is not configured properly. No public key(s) added.'

I updated a Python environment this afternoon and my code using boxsdk stopped passing validation. The environment claiming that “boxsdk is not present,” despite it being installed. I then noted the module version had jumped from 3.14.0 to 10.0.0. I reverted to 3.14.0 and the code again passed validation. Suspicious?

After authenticate the user using authorization url, I’m obtaining refresh token and access token using following method in my Android project(Kotlin). private suspend fun exchangeCodeForToken(code: String): JSONObject? { return withContext(Dispatchers.IO) { val form = FormBody.Builder() .add("grant_type", "authorization_code") .add("code", code) .add("client_id", CLIENT_ID) .add("client_secret", CLIENT_SECRET) .build() val req = Request.Builder() .url(TOKEN_URL) .post(form) .build() httpClient.newCall(req).execute().use { resp -> val body = resp.body?.string() if (resp.isSuccessful && body != null) { JSONObject(body) } else { Timber.e("Token exchange failed: ${resp.code} - $body") null } }

Hello,My JWT Service Account cannot access folders that were shared with us from outside our organization.Setup:- Box Enterprise account- Custom App with JWT Server Authentication- App configured with App + Enterprise Access- App is authorized by enterprise adminThe Problem:Service Account can create and access its own folders but gets 404 error when trying to access externally shared folders by ID What I Tried:- Verified App + Enterprise Access is enabled- Confirmed app is authorized in Admin Console- Invited Service Account as collaborator on the shared folder- Verified all application scopes are enabledExample:Accessing Service Account own folder works fine.Accessing externally shared folder ID ...2037 returns 404 Not Found.How do I make this work?Thanks for any help. 

Hello, I am wondering if anyone can explain a bit more about how the ftp server add on works. (https://support.box.com/hc/en-us/articles/ [removed by moderator] -Using-Box-with-FTPS , https://app.box.com/integrations/box_ftp_server/) I have a client that still uses FTP to upload images to an online platform. It would be great if I could share with them the proper use of this addon. They need to be able to send images or the contents of a folder from their box.com account directly to the external platform via FTP. The functionality I’m looking for is as follows: Images from my clients box account ---->FTP ---> external site platform Can anyone tell me how much this addon costs? I have been having difficulty finding a price. Any details would be greatly appreciated.

I’m using Box SDK python package for development. Since the developer token is valid for only 60 minutes, I need to refresh once it’s expired. How to refresh developer token with Box SDK automatically so that my service can run without manually interrupted? Thanks.

Completely unrelated to the “Invalid Crypto Key” error we ran into last month, a SINGLE one of our client’s (so far) Salesforce Partial sandboxes is now getting CORS errors from Box (using the Box SDK in a LWC) w/o making any changes to the component code, Salesforce, or Box config. We use this same lower level utility LWC code across about a dozen different client’s Salesforce Org’s, including dozens of total sandboxes & Production envs, and no other env is encountering this error...yet.I’ve opened a case w/ Salesforce Partner Community support and they’re running out of ideas, our Box CORS config is unchanged and includes the URL that’s throwing the CORS error, we’ve added and removed the domain back w/ & w/o the trailing slash and didn’t make a difference.I upgraded to the latest 4.91 version of the Box for Salesforce managed package since it adds a couple of extra Trusted URL’s...didn’t make a difference.The “Invalid Crypto Key” error also started as a single client’s Parti

Hi all,I'm developing a java application to fetch box documents/files properties/Info. I'm able to get most of the file properties/Info except MIME type of the files. Is it possible to directly get the MIME type of a document/file using Box Java SDK ? Please suggest your suggestion. Thank you,Arpit

Is it possible to programmatically create an app user via Apex (Box Toolkit/Box SDK for Salesforce) and associate it with an Experience Cloud user in Salesforce?

Hi, a user is trying to connect BOX to my app and they’re not seeing any of their files show up. When they navigate to the web they get this: The application could not be added as it is lacking the proper configuration. Please check with an enterprise admin if the app is properly configured via Admin Console or contact the support e-mail indicated in app description for assistance. Any ideas?