We will need to set up a Box application to manage Box groups and add collaborators to files and folders in Box.
Create a new Box app
Create and configure a new Box JWT application to use for this integration.
Use an existing approved app
Use one of your existing admin-approved Box JWT applications from the Box developer console.
Create a new Box app
To create a new Box application that can be used to call the Box APIs, use the following steps.
- Go to the Developer Console
- Select Create New App
- Select Custom App as the type of application to create, and click Next
- Select OAuth 2.0 with JWT as the authentication method, and click Next
- Give your Box app a unique name and click Create App
- Go to the app's configuration by clicking View Your App.
- Scroll down to Application Access and ensure that Enterprise is selected.
- Scroll to the Application Scopes section of the same screen
and ensure that at least the following scopes are enabled:
Read and write all files and folders stored in Box,
Manage users, and
- Under Advanced Features ensure that Perform Actions as Users is enabled to perform actions on behalf of Box users.
- At the top of the page click the button to Save Changes
Use an Existing JWT Box application
If you have an existing JWT based Box application in your developer console that you would like to use, ensure that the following options are set in the Configuration section of your application.
- Authentication Method: Should be set to OAuth 2.0 with JWT (Server Authentication).
Application Scopes: Set at least the following scopes.
- Read and write all files and folders stored in Box
- Manage users
- Manage groups
Advanced Features: Both options should be enabled to perform actions as users and generate user access tokens.
Once the application is updated it will need to be re-approved by an enterprise admin before you will be able to make calls to any of the Box APIs that need any of the new permissions.
Follow this guide to have the application approved in your enterprise.
To begin working with the Box SDKs used in this tutorial, you will need the application configuration file from the Configuration page of your application. This will include all information needed to verify your application to start making API requests with the Box SDKs.
Within the Add and Manage Public Keys section of the Configuration page, click to Generate a Public/Private Keypair. This will send you through 2FA verification before downloading the configuration file for your application.
Store that file as
boxConfig.json in a location accessible by your
- You created a new, or are using an existing, Box app which is approved by an enterprise admin.
- You downloaded your application configuration file and stored it in a location accessible by your application.