Child Item

Super Admin role in Dropbox via API

Hello Dropbox team! Amongst most File Storage integrations there's a concept of a Super Admin that has access to all users files/folders (including private/shared) in a drive. To access these folders/files via API most times it consists of enabling the scopes in the app and requesting a specific scope through OAuth2.0.

To be able to do so in Dropbox, would that mean enabling just the Team `team_data.content.read`/`files.team_metadata.write` scopes? When connecting app through OAuth2.0 are there any additional scopes needed to enable access through the API?

Find more posts tagged with

Comments

DB-Des

Hi @mergesandbox12,

Depending on the exact use case, you may only need access to the standard file storage endpoints; i.e., you can just use the "User Endpoints", these can be used by any kind of Dropbox account (including Business accounts).

For teams using user-linked apps, by default, API calls to the Dropbox API operate in the "member folder" of the connected account, not the "team space".

You can configure API calls to operate in the "team space" instead though, in order to interact with files/folders in the team space. To do so, you'll need to set the "Dropbox-API-Path-Root" header. You can find information on how to use this in the Team Files Guide.

That said, if you determine your app does need access to "Business Endpoints", we'd recommend referencing the documentation to figure out which exact scopes would need to be enabled: https://www.dropbox.com/developers/documentation/http/documentation.