Forum Discussion

tomdawes's avatar
tomdawes
New member | Level 2
5 years ago
Solved

Provisioning team folders and groups with the same API token

Hi,

I'm working on an app which sets up both a team folder and a group for access. It seems to me that my API token requires both the "Team member file access" permission to create the folder AND the "Team member management" permission to create and add to the access group. However, these permissions appear to be mutually exclusive.

 

Do I really need to use 2 different tokens to achieve this? Or is there an alternative approach?

 

Cheers

 

Tom

  • Currently, it's not possible to register an app for both "team member file access" and "team member management". So, if you do need access to both of those types, you would need to register two apps and have the user connect both of them, to get two access tokens.

     

    We are currently starting to roll out a new permission system though, based on "scopes". With the new system, you can choose the specific "scopes", i.e., the ability to access different pieces of functionality, that your app need access to. You can find more information on this in the new OAuth Guide.

     

    For example, with scopes, you could register a single app with the team_data.member, team_data.team_space, and groups.write scopes, for instance, to get access to all of the corresponding functionality from a single app/access token. You can find which scope each endpoint requires in the documentation.

     

    This feature is not rolled out to everyone yet. You can check if it's available on your account by looking at the app creation page, to see if "Scoped access" is available in step 2 for your account. If you don't see that, it's not yet enabled for you. If it's not enabled for you but you'd like to opt-in early, feel free to open an API ticket from the relevant account and I'll ask the team if we can enable it for you.

     

  • Greg-DB's avatar
    Greg-DB
    Icon for Dropbox Staff rankDropbox Staff

    Currently, it's not possible to register an app for both "team member file access" and "team member management". So, if you do need access to both of those types, you would need to register two apps and have the user connect both of them, to get two access tokens.

     

    We are currently starting to roll out a new permission system though, based on "scopes". With the new system, you can choose the specific "scopes", i.e., the ability to access different pieces of functionality, that your app need access to. You can find more information on this in the new OAuth Guide.

     

    For example, with scopes, you could register a single app with the team_data.member, team_data.team_space, and groups.write scopes, for instance, to get access to all of the corresponding functionality from a single app/access token. You can find which scope each endpoint requires in the documentation.

     

    This feature is not rolled out to everyone yet. You can check if it's available on your account by looking at the app creation page, to see if "Scoped access" is available in step 2 for your account. If you don't see that, it's not yet enabled for you. If it's not enabled for you but you'd like to opt-in early, feel free to open an API ticket from the relevant account and I'll ask the team if we can enable it for you.

     

About Dropbox API Support & Feedback

Node avatar for Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.5,945 PostsLatest Activity: 11 hours ago
351 Following

If you need more help you can view your support options (expected response time for an email or ticket is 24 hours), or contact us on X or Facebook.

For more info on available support options for your Dropbox plan, see this article.

If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!