Provisioning team folders and groups with the same API token

tomdawes

Hi,

I'm working on an app which sets up both a team folder and a group for access. It seems to me that my API token requires both the "Team member file access" permission to create the folder AND the "Team member management" permission to create and add to the access group. However, these permissions appear to be mutually exclusive.

 

Do I really need to use 2 different tokens to achieve this? Or is there an alternative approach?

 

Cheers

 

Tom

Greg-DB

Currently, it's not possible to register an app for both "team member file access" and "team member management". So, if you do need access to both of those types, you would need to register two apps and have the user connect both of them, to get two access tokens.

 

We are currently starting to roll out a new permission system though, based on "scopes". With the new system, you can choose the specific "scopes", i.e., the ability to access different pieces of functionality, that your app need access to. You can find more information on this in the new OAuth Guide.

 

For example, with scopes, you could register a single app with the team_data.member, team_data.team_space, and groups.write scopes, for instance, to get access to all of the corresponding functionality from a single app/access token. You can find which scope each endpoint requires in the documentation.

 

This feature is not rolled out to everyone yet. You can check if it's available on your account by looking at the app creation page, to see if "Scoped access" is available in step 2 for your account. If you don't see that, it's not yet enabled for you. If it's not enabled for you but you'd like to opt-in early, feel free to open an API ticket from the relevant account and I'll ask the team if we can enable it for you.