One month down in 2025: How are your resolutions coming along? Check out how to get back on track here.
Forum Discussion
tomdawes
5 years agoNew member | Level 2
Provisioning team folders and groups with the same API token
Hi,
I'm working on an app which sets up both a team folder and a group for access. It seems to me that my API token requires both the "Team member file access" permission to create the folder AND the "Team member management" permission to create and add to the access group. However, these permissions appear to be mutually exclusive.
Do I really need to use 2 different tokens to achieve this? Or is there an alternative approach?
Cheers
Tom
Currently, it's not possible to register an app for both "team member file access" and "team member management". So, if you do need access to both of those types, you would need to register two apps and have the user connect both of them, to get two access tokens.
We are currently starting to roll out a new permission system though, based on "scopes". With the new system, you can choose the specific "scopes", i.e., the ability to access different pieces of functionality, that your app need access to. You can find more information on this in the new OAuth Guide.
For example, with scopes, you could register a single app with the team_data.member, team_data.team_space, and groups.write scopes, for instance, to get access to all of the corresponding functionality from a single app/access token. You can find which scope each endpoint requires in the documentation.
This feature is not rolled out to everyone yet. You can check if it's available on your account by looking at the app creation page, to see if "Scoped access" is available in step 2 for your account. If you don't see that, it's not yet enabled for you. If it's not enabled for you but you'd like to opt-in early, feel free to open an API ticket from the relevant account and I'll ask the team if we can enable it for you.
- Greg-DB
Dropbox Staff
Currently, it's not possible to register an app for both "team member file access" and "team member management". So, if you do need access to both of those types, you would need to register two apps and have the user connect both of them, to get two access tokens.
We are currently starting to roll out a new permission system though, based on "scopes". With the new system, you can choose the specific "scopes", i.e., the ability to access different pieces of functionality, that your app need access to. You can find more information on this in the new OAuth Guide.
For example, with scopes, you could register a single app with the team_data.member, team_data.team_space, and groups.write scopes, for instance, to get access to all of the corresponding functionality from a single app/access token. You can find which scope each endpoint requires in the documentation.
This feature is not rolled out to everyone yet. You can check if it's available on your account by looking at the app creation page, to see if "Scoped access" is available in step 2 for your account. If you don't see that, it's not yet enabled for you. If it's not enabled for you but you'd like to opt-in early, feel free to open an API ticket from the relevant account and I'll ask the team if we can enable it for you.
- tomdawesNew member | Level 2
Thank you Greg K.
- Greg-DB
Dropbox Staff
Quick update: the new scopes feature is fully rolled out now:
https://dropbox.tech/developers/now-available--scoped-apps-and-enhanced-permissions
About Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.5,945 PostsLatest Activity: 11 hours ago
If you need more help you can view your support options (expected response time for an email or ticket is 24 hours), or contact us on X or Facebook.
For more info on available support options for your Dropbox plan, see this article.
If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!