I have a custom Box App that is set up App Token (Server Authentication). This type of config creates a service account and gives us an access token. I’ve had no problem using the Box API in the past with this token as long as the associated service account is given access to the appropriate folers.
However, calls to the Box SIGN parts of the API return the following:
{
“type”: “error”,
“code”: “insufficient_scope”,
“status”: 403,
“message”: “The request requires higher privileges than provided by the access token.”,
“help_url”: “http://developers.box.com/docs/#errors”,
“request_id”: “0aa1e51ed7348b0df97959af0e579f7e6”
}
Our admin has granted Box Sign access to this service account and I even re-authorized the app just in case. But I’m still getting this permission error. Are service accounts allowed to use Box Sign API?
Keep in mind this uses a static APP TOKEN. It does not use OAuth