SlideShare uma empresa Scribd logo

Box Platform Overview

Transferir como PPTX, PDF
Jonathan LeBlanc
Jonathan LeBlanc

The document provides an overview of the Box platform and common use cases for application development. It describes user types, authentication methods, scopes, and four common application patterns: the classic user model, app user model, service account model, and system-to-system model. It also covers topics like error handling, collaboration and permissions, and best practices.

Tecnologia
1 de 96
Box Platform Overview Jonathan LeBlanc Director of Developer Advocacy, Box Twitter: @jcleblanc Github: https://github.com/jcleblanc
2Box Platform Developer Workshop Box Platform Common Use Cases
3Box Platform Developer Workshop Prerequisite Box Platform Knowledge Managed User App User External User User / Account Types Service Account Auth Systems JWT/OAuth 2 OAuth 2 Developer Token
4Box Platform Developer Workshop Pattern 1: Classic User Model (Vault portals, doc submission, field worker apps)
5Box Platform Developer Workshop Classic User Model Application needs to handle internal and external users External: App Users Internal: Managed Users Content: Owned by App or Managed Users Description: External end users of the application are App users and the internal audience are Managed Users. Benefits: • Allows you to provide a custom experience for end users. • No need to build additional functionality for internal users, they can use the Box web application. • The App user model allows you to interact with end user accounts in a headless manner. This means you can bring your own identity system (e.g. Auth0 / Netlify) and map the ids. • API actions taken on behalf of users are recorded in the event stream, meaning that user events can be stored, connected to other systems, and retained for compliance.
6Box Platform Developer Workshop Pattern 2: App User Model (Vault portals, doc submission, field worker apps)
7Box Platform Developer Workshop App User Model Application needs to handle internal and external users External: App Users Internal: App Users Content: Owned by App Users (Internal and External) Description: Much like the classic user model, but all users (internal and external) are App users. Benefits: • Allows the creation of custom experiences for both internal and external users. • Good for instances where the Box web app is too permissive. This guards internal behavior. • Segmentation of content for managed accounts. This can allow a managed user to have application specific content through an App user account as well. • The App user model allows you to interact with end user accounts in a headless manner. This means you can bring your own identity system (e.g. Auth0 / Netlify) and map the ids. • API actions taken on behalf of users are recorded in the event stream, meaning that user
8Box Platform Developer Workshop Pattern 3: Service Account Model (When existing user object models already exists)
9Box Platform Developer Workshop Service Account Model Application needs to handle internal and external users, but a user object already exists External: Managed by Customer’s Application Internal: Managed Users Content: Owned by Service Account Description: Best used when a company user model already exists, or if you have users that are transient in nature with content that needs to be persistent. Benefits: • Useful when our app user model will complicate existing applications. • Useful in instances where there is not a good 1:1 end user / app user mapping, such as if end users are mapped as groups. • When the idea of folders don’t fit perfectly with the permission model the customer desires. • Can implement the Box token exchange model to ensure that broad scoped access to the service account doesn’t occur.
10Box Platform Developer Workshop Pattern 4: System to System Model (Back office apps and integrations, content ingestion)
11Box Platform Developer Workshop System to System Model No user content needs to be handled External: N/A Internal: N/A Content: Owned by Service Account Description: Service accounts are used here as the de-facto user object for system to system interactions and back office workflows. Benefits: • Perfect for apps where a user construct isn’t needed (e.g. departmental or company owned content that transcends user ownership). • Service account auth is cleanly handled by the JWT process. • Because a service account can be granted elevated scopes, this model allows you to tightly control what activities that the service account can perform. This gives you complete control of assigning permissions to different backend services.
12Box Platform Developer Workshop User Types, Application Auth Types, and Scopes
13Box Platform Developer Workshop Users Types
14Box Platform Developer Workshop Managed UserApp User External User Same as a managed user, but is not part of the same enterprise as the app. These are users that have been collaborated into content by a user in the enterprise. A regular Box user that is part of the same enterprise as the app. This user account can be accessed by the API or by logging in to box.com Users created by an app that may only be accessed by that app. This user account can only be accessed through API calls. Types of Users Defined within Box
15Box Platform Developer Workshop Application Auth Types
16Box Platform Developer Workshop JWT / OAuth 2OAuth 2 Developer Token Short lived developer prototyping token Use an existing identity system without logging into Box Use a user’s Box login as the identity system Types of Auth Systems Box Platform Employs
17Box Platform Developer Workshop OAuth 2 • User types: Managed users. • Requires that users be forwarded to Box to log in with their Box account to accept app permissions. • Access token that is generated is bound to the user who logged in.
18Box Platform Developer Workshop JWT / OAuth 2 • User types: Managed and app users. • Allows the use of an existing identity management system. • Allows the app to manage all user and config content. • Runs behind the scenes.
19Box Platform Developer Workshop Developer Token • User types: None. • Short lived (1 hour) token generated in the application config. • Cannot be refreshed programmatically, only manually. • Should only be used for quick testing & API requests, never in production.
20Box Platform Developer Workshop Scopes
21Box Platform Developer Workshop Application Scopes What your application will have permission to do on behalf of the application, enterprise, and users.
22Box Platform Developer Workshop Read / Write Files & Folders / Upload / View / Download files and folders, and update file versions. / Create / Read / Update / Delete collaborations, tags, tasks, comments, @mentions, task assignments, notifications, and collections. / View enterprise profile information.
23Box Platform Developer Workshop Manage Users / Create / Read / Update / Delete / Activate / Disable Users (app and managed). / Change primary login, reset password, change role for managed users and enterprise content.
24Box Platform Developer Workshop / Create / Read / Update / Delete groups and group memberships for users. Manage Groups
25Box Platform Developer Workshop / App can programmatically control webhooks (referred to as webhooks v2). / Create / Read / Update / Delete new or existing webhooks on files and folders. Manage Webhooks
26Box Platform Developer Workshop Manage Enterprise Properties / Read / Update enterprise attributes and reports. / Edit / Delete device pinners (what devices can use native Box applications).
27Box Platform Developer Workshop Manage Retention Policies / Create / Read / Update data retention policies. / Feature is tied to Box Governance service package.
28Box Platform Developer Workshop Links and Code Samples
29Box Platform Developer Workshop • Creating a JWT app client with the downloaded Box application config file https://github.com/jcleblanc/box-workshops/blob/master/app-auth/jwt-auth-config.js • Creating a JWT app client with manually created public/private keys: https://github.com/jcleblanc/box- workshops/blob/master/app-auth/jwt-auth-keys.js • Manually constructing the JWT claims process (no SDK): https://github.com/jcleblanc/box-examples/blob/master/node/samples/auth_jwt_api.js Code Samples Authentication and Authorization (JWT / OAuth2)
30Box Platform Developer Workshop • Create a new app user: https://github.com/jcleblanc/box-workshops/blob/master/app-auth/create-app-user.js • Create a new managed user: https://github.com/jcleblanc/box-workshops/blob/master/app-auth/create-managed-user.js • Delete a user by ID: https://github.com/jcleblanc/box-workshops/blob/master/app-auth/delete-user.js Code Samples User Management
31Box Platform Developer Workshop Service Accounts
32Box Platform Developer Workshop What is a Service Account
33Box Platform Developer Workshop Service Account Details • A user account that represents your application in an enterprise. • Can only be accessed programmatically. • Has its own file storage. • Generated automatically with a new JWT application. • By default, a service account only has access to its own data store. • Access to app users / managed users has to be explicitly enabled and requested. Access Rights
34Box Platform Developer Workshop Service Account Architecture
35Box Platform Developer Workshop Service Account User Account Maintain all user an application data within the service account. Users will be collaborated in on content. User specific data is maintained in the individual user account. All data access requests are made on behalf of the user. Where to Store User and Application Data
36Box Platform Developer Workshop Storing Data in the Service Account (Overview) • Improved data security due to tight controls over data location and sharing • Data retention and migration improves following customer deletion, as the user collaboration is simply removed. Benefits • Architecture complexity increases as a separate user folder structure needs to be maintained in the service account. • Single point of failure. Concerns
37Box Platform Developer Workshop Storing Data in the User Account (Overview) • Data is retained and owned by each user. • Simple repeatable architecture on each user account. Benefits • Data retention after customer deletion requires data migration or loss. • App has no control over data integrity. Concerns
38Box Platform Developer Workshop Users and Permissions
39Box Platform Developer Workshop App UsersNo User Access All Users Service account can access its own content, app user content, as well as content of any users in the enterprise Service account can access its own content and content for any app users it creates Service account can only access its own content User Access Levels for a Service Account
40Box Platform Developer Workshop Application Access • Application: Only access data and users within the JWT app. • Enterprise: Access data and users within the app as well as the entire enterprise that the app is a part of.
41Box Platform Developer Workshop Advanced Features • Perform actions as users: Use an As-User header with each request to act on behalf of a user. Access token passed is for service account. • Generate user access tokens: Create an access token scoped to a user account and use that token for each request.
42Box Platform Developer Workshop User Access Application Access Advanced Features No User Access Application None set App Users Only Application One or both set App and Managed Users Enterprise One or both set Setting User Access for the Service Account Settings to use to get the desired level of user access for a service account
43Box Platform Developer Workshop Links and Code Samples
44Box Platform Developer Workshop • Uploading file to service account: https://github.com/jcleblanc/box-workshops/blob/master/service-accounts/service-account-upload-sa.js • Uploading file to user account using As-User header: https://github.com/jcleblanc/box-workshops/blob/master/service-accounts/service-account-upload- asuser.js • Uploading file to user account using user access token: https://github.com/jcleblanc/box-workshops/blob/master/service-accounts/service-account-upload- usertoken.js Code Samples Service Accounts
45Box Platform Developer Workshop Collaboration and Permissioning
46Box Platform Developer Workshop Permission Structure
47Box Platform Developer Workshop / Waterfall permission model for folders / When users are collaborated in on a folder they can view all files / folders under that folder. Folder Permission Model
48Box Platform Developer Workshop Common Folder Models Duplicate Folders for each User A folder model is created and duplicated for each user. Collaborators or groups are added at each level. App User 1 App User 2 Config User Data Personnel Operations Config User Data Personnel Operations
49Box Platform Developer Workshop Common Folder Models Business Level Ownership The Box enterprise admin, or appropriate leadership level, would maintain the root folder level. Each business level is maintained under that level, where major business units may have minor units located underneath. Enterprise Admin Marketing Sales Products Parts & Services Engineering
50Box Platform Developer Workshop Collaborations
51Box Platform Developer Workshop Collaboration System • Service accounts and users start by only being able to access content in their own accounts. • For those accounts to access content from other accounts they will need to be collaborated in on content. • Users can be collaborated via ID, email, or group ID.
52Box Platform Developer Workshop / co-owner: Full access / editor: Full access minus invites / settings / previewer: Basic view and edit / previewer uploader: Previewer + uploader / uploader: Upload, basic metadata, and view / viewer: Preview + download and send links / viewer uploader: Viewer + uploader Collaboration Types
53Box Platform Developer Workshop Links and Code Samples
54Box Platform Developer Workshop • Add Collaborators to a Folder: https://github.com/jcleblanc/box-workshops/blob/master/collaboration/collaborate_add.js • Remove a Collaboration: https://github.com/jcleblanc/box-workshops/blob/master/collaboration/collaborate_remove.js Code Samples Collaborations and Permissions
55Box Platform Developer Workshop Error Conditions and Program Flow
56Box Platform Developer Workshop Access Token Errors (401: unauthorized)
57Box Platform Developer Workshop Causes of Unauthorized Errors Access token maintenance / Access tokens expire after 1 hour. At that point they must be refreshed using the refresh token. / The .Net, Java, and Node SDKs handle this refresh action automatically. For any other SDK or direct API integration token expiration responses (401: unauthorized) will need to be handled through the app.
58Box Platform Developer Workshop Scoping Errors (403: access_denied_insufficient_permissions)
59Box Platform Developer Workshop Causes of Insufficient Permissions Errors User and application scoping / There are typically two causes of a 403: access_denied_insufficient_permissions error, either the user an access token is scoped for doesn’t have permission to perform an action, or the application doesn’t. / For user permissions, try logging in as the user via the “Log in as this User” option in the admin console. Attempt to access the content manually. / For an application, ensure that the application has the correct scopes defined for the action that it is trying to perform.
60Box Platform Developer Workshop Item Location Errors (404: not_found)
61Box Platform Developer Workshop Causes of Not Found Errors Access Token Scoping / This may be encountered when trying to work with files and folders within Box when using a JWT / OAuth 2 based application with a service account. If the ID of the file / folder that is being accessed has been verified as present, this error will typically be caused by the account that the client is pointing to. For instance, if a file exists on a user account but the access token client is scoped for the service account, then a 404 error may be produced. / In cases of an access token that is scoped to the wrong account, use the As-User header or user scoped access token for user access, or a service account scoped access token for service account files.
62Box Platform Developer Workshop Name Conflicts (409: item_name_in_use)
63Box Platform Developer Workshop Causes of Name Conflicts Checking name uniqueness / File / folder names within a given folder must be uniquely named. When there is an attempt to create a new file / folder with a name that already exists, a 409: item_name_in_use, or a standard 409: conflict may be produced. / In case of a duplicate user login information being used when creating new managed users, a 409: user_login_already_used error would be produced. / These errors should be handled. Possible next steps in the program flow would be to attempt the same API request / login with revised information.
64Box Platform Developer Workshop Metadata Conflicts (409: tuple_already_exists)
65Box Platform Developer Workshop Causes of Metadata Conflicts Checking if metadata is already present on a file / If metadata for a template is already present within a file and a request to add metadata is made, the API will return a 409: tuple_already_exists error. / This error should be handled in a try / catch. When found, a request to update the existing metadata should then be made. / Update requests will need to use a JSON patch object.
66Box Platform Developer Workshop Rate Limits (429: rate_limit_exceeded)
67Box Platform Developer Workshop Causes of Rate Limiting Check Retry-After header for amount of time until next call / Making requests to auth a user each time they visit. Access tokens should be stored for future use. / Polling the event stream too often. Cache results when possible. / Producing too many requests from a single user (e.g. a service account). Limit is 10 API calls per second per user. / Making too many simultaneous upload requests from a single user. Limit is 4 uploads per second per user.
68Box Platform Developer Workshop Links and Code Samples
69Box Platform Developer Workshop • Handling 409 name conflict errors: https://github.com/jcleblanc/box-workshops/blob/master/error-conditions/409-name-conflict.js • Handling 409 metadata conflict errors: https://github.com/jcleblanc/box-workshops/blob/master/error-conditions/409-metadata-conflict.js • Errors codes produced by the Box APIs, and their solutions: https://developer.box.com/docs/error-codes Code Samples and Links Error Conditions
70Box Platform Developer Workshop Webhooks
71Box Platform Developer Workshop Webhooks V1
72Box Platform Developer Workshop / Manually created through the app dashboard: https://app.box.com/developers/console / Cannot be adjusted programmatically / Produces webhook events for all actions in an app and cannot be bound to a file / folder. Webhooks V1 Details
73Box Platform Developer Workshop Webhooks V2
74Box Platform Developer Workshop / Programmatically created and maintained through the Webhooks APIs. / Create, Read, Update, and Delete endpoints. / Can be bound to a single file or folder Webhooks V2 Details
75Box Platform Developer Workshop User Events ACCESS_GRANTED ACCESS_REVOKED COLLAB_ADD_COLLABORATOR COLLAB_INVITE_COLLABORATOR COLLAB_REMOVE_COLLABORATO R COLLAB_ROLE_CHANGE COMMENT_CREATE COMMENT DELETE ENABLE_TWO_FACTOR_AUTH GROUP_ADD_USER GROUP_REMOVE_USER ITEM_COPY ITEM_CREATE ITEM_DOWNLOAD ITEM_MAKE_CURRENT_VERSION ITEM_MOVE ITEM_PREVIEW ITEM_RENAME ITEM_SHARED ITEM_SHARED_CREATE ITEM_SHARED_UNSHARE ITEM_SYNC ITEM_TRASH ITEM_UNDELETE_VIA_TRASH ITEM_UNSYNC ITEM_UPLOAD LOCK_CREATE LOCK_DESTROY MASTER_INVITE_ACCEPT MASTER_INVITE_REJECT TAG_ITEM_CREATE TASK_ASSIGNMENT_CREATE TASK_CREATE
76Box Platform Developer Workshop Links and Code Samples
77Box Platform Developer Workshop • Create Webhook: https://github.com/jcleblanc/box-workshops/blob/master/webhooks/webhooks-create.js • Update Webhook: https://github.com/jcleblanc/box-workshops/blob/master/webhooks/webhooks-update.js • Delete Webhook: https://github.com/jcleblanc/box-workshops/blob/master/webhooks/webhooks-delete.js Code Samples Webhooks
78Box Platform Developer Workshop Token Management and UI Tools
79Box Platform Developer Workshop Downscoping Tokens
80Box Platform Developer Workshop Downscoped TokenAccess Token Client-Side Code Downscoped token is deployed to client-side code, mobile environment, or UI tool. New access token that is tightly restricted in access rights (read / write) for a file or folder. Standard OAuth2 access token that is fully scoped for an enterprise or user. Token Downscoping Process
81Box Platform Developer Workshop Item Scopes / item_delete: Delete file/folder. / item_download: Download file / folder. / item_preview: Preview file / folder. / item_rename: Rename file folder. / item_share: Create shared link. / item_upload: Upload new content.
82Box Platform Developer Workshop Annotation Scopes / annotation_edit: Update existing annotations on files. / annotation_view_all: View annotations from all users. / annotation_view_self: View annotations from yourself only.
83Box Platform Developer Workshop Box UI Tools
84Box Platform Developer Workshop Box UI Elements • UI components build with React (JavaScript library). • Authentication and token agnostic: Works with JWT and OAuth flows. • Use type agnostic: Works with app, managed, and external user types.
85Box Platform Developer Workshop Content Explorer Navigate Box files and folders within your app. Content Picker Select Box files and folders within your app Content Preview View docs, images, videos, 3D files, and more within your app Content Uploader Drag and drop files from a device into your app / Box.
86Box Platform Developer Workshop Base Scopes for Token / base_explorer / base_picker / base_preview / base_upload
87Box Platform Developer Workshop Links and Code Samples
88Box Platform Developer Workshop • Downscoping tokens: https://github.com/jcleblanc/box-workshops/blob/master/token-management/downscope-token.js • Box Elements (simple content explorer): https://github.com/jcleblanc/box-workshops/blob/master/token-management/box-elements.js • Box Elements (complex example for all Elements) https://github.com/jcleblanc/box-examples/tree/master/node/elements Code Samples Token Management and UI Tools
89Box Platform Developer Workshop Advanced Automation and Machine Learning
90Box Platform Developer Workshop Skills
91Box Platform Developer Workshop Custom SkillsFoundational Skills Extends upon the platform event pump / webhook system to hook to machine learning system with the intent of enhancing file metadata. Turned on manually through Box site account. Provides enhancements for images, video, audio, etc.
92Box Platform Developer Workshop Custom Skills
93Box Platform Developer Workshop Custom Skills • Allows for the enhancement of file metadata automatically through machine learning services. • Provides multiple card types for displaying data (timeline, transcript, keyword). • Uses tightly scoped read / write downscoped tokens.
94Box Platform Developer Workshop Example Skills Metadata Enhancement (Audio Data)
95Box Platform Developer Workshop MiddlewareFile Upload Machine Learning The machine learning system will take in the contents of a Box file, run analysis of the data, and respond with the enhanced metadata to the middleware layer. The middleware layer works as an intermediary between the Box file and ML system. It sends the file info the the ML system and updates the Box file metadata with its response. The skills process is triggered when a new or updated file is uploaded to Box. An event is sent to a specified endpoint with file access information. Skills Workflow Event Metadata Execute Callback
Box Platform Overview Jonathan LeBlanc Director of Developer Advocacy, Box Twitter: @jcleblanc Github: https://github.com/jcleblanc

Recomendados

Better Data with Machine Learning and Serverless
Better Data with Machine Learning and ServerlessBetter Data with Machine Learning and Serverless
Better Data with Machine Learning and ServerlessJonathan LeBlanc
 
Box Platform Developer Workshop
Box Platform Developer WorkshopBox Platform Developer Workshop
Box Platform Developer WorkshopJonathan LeBlanc
 
Best Practices for Application Development with Box
Best Practices for Application Development with BoxBest Practices for Application Development with Box
Best Practices for Application Development with BoxJonathan LeBlanc
 
Live Identity Services Drilldown - PDC 2008
Live Identity Services Drilldown - PDC 2008Live Identity Services Drilldown - PDC 2008
Live Identity Services Drilldown - PDC 2008Jorgen Thelin
 
D17251 gc20 47_us
D17251 gc20 47_usD17251 gc20 47_us
D17251 gc20 47_usKarno Nur Cahyo
 
Lecture 11. Microsoft mobile services
Lecture 11. Microsoft mobile servicesLecture 11. Microsoft mobile services
Lecture 11. Microsoft mobile servicesMaksym Davydov
 
Harmik Uchian Portfolio
Harmik Uchian PortfolioHarmik Uchian Portfolio
Harmik Uchian Portfolioharmiku
 
Microsoft Sharepoint 2013 : The Ultimate Enterprise Collaboration Platform
Microsoft Sharepoint 2013 : The Ultimate Enterprise Collaboration PlatformMicrosoft Sharepoint 2013 : The Ultimate Enterprise Collaboration Platform
Microsoft Sharepoint 2013 : The Ultimate Enterprise Collaboration PlatformEdureka!
 

Recomendados

Better Data with Machine Learning and Serverless
Better Data with Machine Learning and ServerlessBetter Data with Machine Learning and Serverless
Better Data with Machine Learning and ServerlessJonathan LeBlanc
 
Box Platform Developer Workshop
Box Platform Developer WorkshopBox Platform Developer Workshop
Box Platform Developer WorkshopJonathan LeBlanc
 
Best Practices for Application Development with Box
Best Practices for Application Development with BoxBest Practices for Application Development with Box
Best Practices for Application Development with BoxJonathan LeBlanc
 
Live Identity Services Drilldown - PDC 2008
Live Identity Services Drilldown - PDC 2008Live Identity Services Drilldown - PDC 2008
Live Identity Services Drilldown - PDC 2008Jorgen Thelin
 
D17251 gc20 47_us
D17251 gc20 47_usD17251 gc20 47_us
D17251 gc20 47_usKarno Nur Cahyo
 
Lecture 11. Microsoft mobile services
Lecture 11. Microsoft mobile servicesLecture 11. Microsoft mobile services
Lecture 11. Microsoft mobile servicesMaksym Davydov
 
Harmik Uchian Portfolio
Harmik Uchian PortfolioHarmik Uchian Portfolio
Harmik Uchian Portfolioharmiku
 
Microsoft Sharepoint 2013 : The Ultimate Enterprise Collaboration Platform
Microsoft Sharepoint 2013 : The Ultimate Enterprise Collaboration PlatformMicrosoft Sharepoint 2013 : The Ultimate Enterprise Collaboration Platform
Microsoft Sharepoint 2013 : The Ultimate Enterprise Collaboration PlatformEdureka!
 
Jeff Huber Portfoilio
Jeff Huber PortfoilioJeff Huber Portfoilio
Jeff Huber PortfoilioJeffHuber
 
Arthur Del Prado .Net Portfolio
Arthur Del Prado .Net PortfolioArthur Del Prado .Net Portfolio
Arthur Del Prado .Net Portfolioartsdp
 
Codendi Administration Guide
Codendi Administration GuideCodendi Administration Guide
Codendi Administration GuideCodendi
 
Resume
ResumeResume
ResumeSuresh Pasula
 
.NET Project Manual
.NET Project Manual.NET Project Manual
.NET Project Manualcormacsharpe
 
Resume
ResumeResume
ResumeAnkit.Rustagi
 
Navya_Resume_New (1)
Navya_Resume_New (1)Navya_Resume_New (1)
Navya_Resume_New (1)Navya MP
 
Nishant Rai_SE.DOC
Nishant Rai_SE.DOCNishant Rai_SE.DOC
Nishant Rai_SE.DOCNishant Rai
 
Spring
SpringSpring
SpringPrashant Kumar
 
Bug XTracker Report
Bug XTracker ReportBug XTracker Report
Bug XTracker ReportAbhimanyu Sood
 
Anypointconnectordevkit 160816041722
Anypointconnectordevkit 160816041722Anypointconnectordevkit 160816041722
Anypointconnectordevkit 160816041722ppts123456
 
The Art and Science of Requirements Gathering
The Art and Science of Requirements GatheringThe Art and Science of Requirements Gathering
The Art and Science of Requirements GatheringVanessa Turke
 
Ahmedabad Salesforce Meetup
Ahmedabad Salesforce MeetupAhmedabad Salesforce Meetup
Ahmedabad Salesforce MeetupShankar Sharma
 
Resume
ResumeResume
ResumeSaiprakash Revuri
 
Learning%20%20 port
Learning%20%20 portLearning%20%20 port
Learning%20%20 portPrasad Kavuri
 
Implement Authorization in your Apps with Microsoft identity platform-June 2020
Implement Authorization in your Apps with Microsoft identity platform-June 2020Implement Authorization in your Apps with Microsoft identity platform-June 2020
Implement Authorization in your Apps with Microsoft identity platform-June 2020Microsoft 365 Developer
 
Raja3Years
Raja3YearsRaja3Years
Raja3YearsRaja Ravichandran
 
Liferay 6.1 Roadmap - What's next!
Liferay 6.1 Roadmap - What's next!Liferay 6.1 Roadmap - What's next!
Liferay 6.1 Roadmap - What's next!Julio Camarero
 
Future fashion report
Future fashion reportFuture fashion report
Future fashion reportlokeshboran
 
human computer interaction of movie booking system project
human computer interaction of movie booking system projecthuman computer interaction of movie booking system project
human computer interaction of movie booking system project201roopikha
 
How to Build, Manage, and Promote APIs
How to Build, Manage, and Promote APIsHow to Build, Manage, and Promote APIs
How to Build, Manage, and Promote APIsWSO2
 
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...MongoDB
 

Mais conteúdo relacionado

Mais procurados

Jeff Huber Portfoilio
Jeff Huber PortfoilioJeff Huber Portfoilio
Jeff Huber PortfoilioJeffHuber
 
Arthur Del Prado .Net Portfolio
Arthur Del Prado .Net PortfolioArthur Del Prado .Net Portfolio
Arthur Del Prado .Net Portfolioartsdp
 
Codendi Administration Guide
Codendi Administration GuideCodendi Administration Guide
Codendi Administration GuideCodendi
 
.NET Project Manual
.NET Project Manual.NET Project Manual
.NET Project Manualcormacsharpe
 
Navya_Resume_New (1)
Navya_Resume_New (1)Navya_Resume_New (1)
Navya_Resume_New (1)Navya MP
 
Nishant Rai_SE.DOC
Nishant Rai_SE.DOCNishant Rai_SE.DOC
Nishant Rai_SE.DOCNishant Rai
 
Anypointconnectordevkit 160816041722
Anypointconnectordevkit 160816041722Anypointconnectordevkit 160816041722
Anypointconnectordevkit 160816041722ppts123456
 

Mais procurados (11)

Jeff Huber Portfoilio
Jeff Huber PortfoilioJeff Huber Portfoilio
Jeff Huber Portfoilio
 
Arthur Del Prado .Net Portfolio
Arthur Del Prado .Net PortfolioArthur Del Prado .Net Portfolio
Arthur Del Prado .Net Portfolio
 
Codendi Administration Guide
Codendi Administration GuideCodendi Administration Guide
Codendi Administration Guide
 
Resume
ResumeResume
Resume
 
.NET Project Manual
.NET Project Manual.NET Project Manual
.NET Project Manual
 
Resume
ResumeResume
Resume
 
Navya_Resume_New (1)
Navya_Resume_New (1)Navya_Resume_New (1)
Navya_Resume_New (1)
 
Nishant Rai_SE.DOC
Nishant Rai_SE.DOCNishant Rai_SE.DOC
Nishant Rai_SE.DOC
 
Spring
SpringSpring
Spring
 
Bug XTracker Report
Bug XTracker ReportBug XTracker Report
Bug XTracker Report
 
Anypointconnectordevkit 160816041722
Anypointconnectordevkit 160816041722Anypointconnectordevkit 160816041722
Anypointconnectordevkit 160816041722
 

Semelhante a Box Platform Overview

The Art and Science of Requirements Gathering
The Art and Science of Requirements GatheringThe Art and Science of Requirements Gathering
The Art and Science of Requirements GatheringVanessa Turke
 
Ahmedabad Salesforce Meetup
Ahmedabad Salesforce MeetupAhmedabad Salesforce Meetup
Ahmedabad Salesforce MeetupShankar Sharma
 
Implement Authorization in your Apps with Microsoft identity platform-June 2020
Implement Authorization in your Apps with Microsoft identity platform-June 2020Implement Authorization in your Apps with Microsoft identity platform-June 2020
Implement Authorization in your Apps with Microsoft identity platform-June 2020Microsoft 365 Developer
 
Liferay 6.1 Roadmap - What's next!
Liferay 6.1 Roadmap - What's next!Liferay 6.1 Roadmap - What's next!
Liferay 6.1 Roadmap - What's next!Julio Camarero
 
Future fashion report
Future fashion reportFuture fashion report
Future fashion reportlokeshboran
 
human computer interaction of movie booking system project
human computer interaction of movie booking system projecthuman computer interaction of movie booking system project
human computer interaction of movie booking system project201roopikha
 
How to Build, Manage, and Promote APIs
How to Build, Manage, and Promote APIsHow to Build, Manage, and Promote APIs
How to Build, Manage, and Promote APIsWSO2
 
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...MongoDB
 
#2 connected apps_calicut_31_july
#2 connected apps_calicut_31_july#2 connected apps_calicut_31_july
#2 connected apps_calicut_31_julyJohnMathewPhilip
 
Project Tracking System
Project Tracking SystemProject Tracking System
Project Tracking Systemncct
 
Introduction to Azure AD and Azure AD B2C
Introduction to Azure AD and Azure AD B2CIntroduction to Azure AD and Azure AD B2C
Introduction to Azure AD and Azure AD B2CJoonas Westlin
 
Cloud-Based App Development using SharePoint 2013, Office 365 and Azure
Cloud-Based App Development using SharePoint 2013, Office 365 and AzureCloud-Based App Development using SharePoint 2013, Office 365 and Azure
Cloud-Based App Development using SharePoint 2013, Office 365 and AzureTobias Lekman
 
Online Shopping based on ASP .NET
Online Shopping based on ASP .NET Online Shopping based on ASP .NET
Online Shopping based on ASP .NET Pragnya Dash
 

Semelhante a Box Platform Overview (20)

The Art and Science of Requirements Gathering
The Art and Science of Requirements GatheringThe Art and Science of Requirements Gathering
The Art and Science of Requirements Gathering
 
Ahmedabad Salesforce Meetup
Ahmedabad Salesforce MeetupAhmedabad Salesforce Meetup
Ahmedabad Salesforce Meetup
 
Resume
ResumeResume
Resume
 
Learning%20%20 port
Learning%20%20 portLearning%20%20 port
Learning%20%20 port
 
Implement Authorization in your Apps with Microsoft identity platform-June 2020
Implement Authorization in your Apps with Microsoft identity platform-June 2020Implement Authorization in your Apps with Microsoft identity platform-June 2020
Implement Authorization in your Apps with Microsoft identity platform-June 2020
 
Raja3Years
Raja3YearsRaja3Years
Raja3Years
 
Liferay 6.1 Roadmap - What's next!
Liferay 6.1 Roadmap - What's next!Liferay 6.1 Roadmap - What's next!
Liferay 6.1 Roadmap - What's next!
 
Future fashion report
Future fashion reportFuture fashion report
Future fashion report
 
human computer interaction of movie booking system project
human computer interaction of movie booking system projecthuman computer interaction of movie booking system project
human computer interaction of movie booking system project
 
How to Build, Manage, and Promote APIs
How to Build, Manage, and Promote APIsHow to Build, Manage, and Promote APIs
How to Build, Manage, and Promote APIs
 
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
Socialite, the Open Source Status Feed Part 1: Design Overview and Scaling fo...
 
#2 connected apps_calicut_31_july
#2 connected apps_calicut_31_july#2 connected apps_calicut_31_july
#2 connected apps_calicut_31_july
 
DEEPAK RAWAT
DEEPAK RAWATDEEPAK RAWAT
DEEPAK RAWAT
 
SDJ
SDJSDJ
SDJ
 
Project Tracking System
Project Tracking SystemProject Tracking System
Project Tracking System
 
Introduction to Azure AD and Azure AD B2C
Introduction to Azure AD and Azure AD B2CIntroduction to Azure AD and Azure AD B2C
Introduction to Azure AD and Azure AD B2C
 
Cloud-Based App Development using SharePoint 2013, Office 365 and Azure
Cloud-Based App Development using SharePoint 2013, Office 365 and AzureCloud-Based App Development using SharePoint 2013, Office 365 and Azure
Cloud-Based App Development using SharePoint 2013, Office 365 and Azure
 
Online Shopping based on ASP .NET
Online Shopping based on ASP .NET Online Shopping based on ASP .NET
Online Shopping based on ASP .NET
 
VINOD_6yrs
VINOD_6yrsVINOD_6yrs
VINOD_6yrs
 
Meera3.9
Meera3.9Meera3.9
Meera3.9
 

Mais de Jonathan LeBlanc

JavaScript App Security: Auth and Identity on the Client
JavaScript App Security: Auth and Identity on the ClientJavaScript App Security: Auth and Identity on the Client
JavaScript App Security: Auth and Identity on the ClientJonathan LeBlanc
 
Improving Developer Onboarding Through Intelligent Data Insights
Improving Developer Onboarding Through Intelligent Data InsightsImproving Developer Onboarding Through Intelligent Data Insights
Improving Developer Onboarding Through Intelligent Data InsightsJonathan LeBlanc
 
Modern Cloud Data Security Practices
Modern Cloud Data Security PracticesModern Cloud Data Security Practices
Modern Cloud Data Security PracticesJonathan LeBlanc
 
Understanding Box UI Elements
Understanding Box UI ElementsUnderstanding Box UI Elements
Understanding Box UI ElementsJonathan LeBlanc
 
Understanding Box applications, tokens, and scoping
Understanding Box applications, tokens, and scopingUnderstanding Box applications, tokens, and scoping
Understanding Box applications, tokens, and scopingJonathan LeBlanc
 
The Future of Online Money: Creating Secure Payments Globally
The Future of Online Money: Creating Secure Payments GloballyThe Future of Online Money: Creating Secure Payments Globally
The Future of Online Money: Creating Secure Payments GloballyJonathan LeBlanc
 
Modern API Security with JSON Web Tokens
Modern API Security with JSON Web TokensModern API Security with JSON Web Tokens
Modern API Security with JSON Web TokensJonathan LeBlanc
 
Creating an In-Aisle Purchasing System from Scratch
Creating an In-Aisle Purchasing System from ScratchCreating an In-Aisle Purchasing System from Scratch
Creating an In-Aisle Purchasing System from ScratchJonathan LeBlanc
 
Secure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication MediaSecure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication MediaJonathan LeBlanc
 
Protecting the Future of Mobile Payments
Protecting the Future of Mobile PaymentsProtecting the Future of Mobile Payments
Protecting the Future of Mobile PaymentsJonathan LeBlanc
 
Node.js Authentication and Data Security
Node.js Authentication and Data SecurityNode.js Authentication and Data Security
Node.js Authentication and Data SecurityJonathan LeBlanc
 
PHP Identity and Data Security
PHP Identity and Data SecurityPHP Identity and Data Security
PHP Identity and Data SecurityJonathan LeBlanc
 
Secure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication MediaSecure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication MediaJonathan LeBlanc
 
Protecting the Future of Mobile Payments
Protecting the Future of Mobile PaymentsProtecting the Future of Mobile Payments
Protecting the Future of Mobile PaymentsJonathan LeBlanc
 
Future of Identity, Data, and Wearable Security
Future of Identity, Data, and Wearable SecurityFuture of Identity, Data, and Wearable Security
Future of Identity, Data, and Wearable SecurityJonathan LeBlanc
 
Building a Mobile Location Aware System with Beacons
Building a Mobile Location Aware System with BeaconsBuilding a Mobile Location Aware System with Beacons
Building a Mobile Location Aware System with BeaconsJonathan LeBlanc
 
Identity in the Future of Embeddables & Wearables
Identity in the Future of Embeddables & WearablesIdentity in the Future of Embeddables & Wearables
Identity in the Future of Embeddables & WearablesJonathan LeBlanc
 

Mais de Jonathan LeBlanc (20)

JavaScript App Security: Auth and Identity on the Client
JavaScript App Security: Auth and Identity on the ClientJavaScript App Security: Auth and Identity on the Client
JavaScript App Security: Auth and Identity on the Client
 
Improving Developer Onboarding Through Intelligent Data Insights
Improving Developer Onboarding Through Intelligent Data InsightsImproving Developer Onboarding Through Intelligent Data Insights
Improving Developer Onboarding Through Intelligent Data Insights
 
Modern Cloud Data Security Practices
Modern Cloud Data Security PracticesModern Cloud Data Security Practices
Modern Cloud Data Security Practices
 
Box Authentication Types
Box Authentication TypesBox Authentication Types
Box Authentication Types
 
Understanding Box UI Elements
Understanding Box UI ElementsUnderstanding Box UI Elements
Understanding Box UI Elements
 
Understanding Box applications, tokens, and scoping
Understanding Box applications, tokens, and scopingUnderstanding Box applications, tokens, and scoping
Understanding Box applications, tokens, and scoping
 
The Future of Online Money: Creating Secure Payments Globally
The Future of Online Money: Creating Secure Payments GloballyThe Future of Online Money: Creating Secure Payments Globally
The Future of Online Money: Creating Secure Payments Globally
 
Modern API Security with JSON Web Tokens
Modern API Security with JSON Web TokensModern API Security with JSON Web Tokens
Modern API Security with JSON Web Tokens
 
Creating an In-Aisle Purchasing System from Scratch
Creating an In-Aisle Purchasing System from ScratchCreating an In-Aisle Purchasing System from Scratch
Creating an In-Aisle Purchasing System from Scratch
 
Secure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication MediaSecure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication Media
 
Protecting the Future of Mobile Payments
Protecting the Future of Mobile PaymentsProtecting the Future of Mobile Payments
Protecting the Future of Mobile Payments
 
Node.js Authentication and Data Security
Node.js Authentication and Data SecurityNode.js Authentication and Data Security
Node.js Authentication and Data Security
 
PHP Identity and Data Security
PHP Identity and Data SecurityPHP Identity and Data Security
PHP Identity and Data Security
 
Secure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication MediaSecure Payments Over Mixed Communication Media
Secure Payments Over Mixed Communication Media
 
Protecting the Future of Mobile Payments
Protecting the Future of Mobile PaymentsProtecting the Future of Mobile Payments
Protecting the Future of Mobile Payments
 
Future of Identity, Data, and Wearable Security
Future of Identity, Data, and Wearable SecurityFuture of Identity, Data, and Wearable Security
Future of Identity, Data, and Wearable Security
 
Kill All Passwords
Kill All PasswordsKill All Passwords
Kill All Passwords
 
BattleHack Los Angeles
BattleHack Los Angeles BattleHack Los Angeles
BattleHack Los Angeles
 
Building a Mobile Location Aware System with Beacons
Building a Mobile Location Aware System with BeaconsBuilding a Mobile Location Aware System with Beacons
Building a Mobile Location Aware System with Beacons
 
Identity in the Future of Embeddables & Wearables
Identity in the Future of Embeddables & WearablesIdentity in the Future of Embeddables & Wearables
Identity in the Future of Embeddables & Wearables
 

Último

Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
Manual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditManual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditSkynet Technologies
 
Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Farhan Tariq
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
Sample pptx for embedding into website for demo
Sample pptx for embedding into website for demoSample pptx for embedding into website for demo
Sample pptx for embedding into website for demoHarshalMandlekar2
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfLoriGlavin3
 
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...AliaaTarek5
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch TuesdayIvanti
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersRaghuram Pandurangan
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Alkin Tezuysal
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxLoriGlavin3
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI AgeCprime
 

Último (20)

Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
Manual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditManual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance Audit
 
Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
Sample pptx for embedding into website for demo
Sample pptx for embedding into website for demoSample pptx for embedding into website for demo
Sample pptx for embedding into website for demo
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdf
 
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch Tuesday
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information Developers
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI Age
 

Box Platform Overview

  • 1. Box Platform Overview Jonathan LeBlanc Director of Developer Advocacy, Box Twitter: @jcleblanc Github: https://github.com/jcleblanc
  • 2. 2Box Platform Developer Workshop Box Platform Common Use Cases
  • 3. 3Box Platform Developer Workshop Prerequisite Box Platform Knowledge Managed User App User External User User / Account Types Service Account Auth Systems JWT/OAuth 2 OAuth 2 Developer Token
  • 4. 4Box Platform Developer Workshop Pattern 1: Classic User Model (Vault portals, doc submission, field worker apps)
  • 5. 5Box Platform Developer Workshop Classic User Model Application needs to handle internal and external users External: App Users Internal: Managed Users Content: Owned by App or Managed Users Description: External end users of the application are App users and the internal audience are Managed Users. Benefits: • Allows you to provide a custom experience for end users. • No need to build additional functionality for internal users, they can use the Box web application. • The App user model allows you to interact with end user accounts in a headless manner. This means you can bring your own identity system (e.g. Auth0 / Netlify) and map the ids. • API actions taken on behalf of users are recorded in the event stream, meaning that user events can be stored, connected to other systems, and retained for compliance.
  • 6. 6Box Platform Developer Workshop Pattern 2: App User Model (Vault portals, doc submission, field worker apps)
  • 7. 7Box Platform Developer Workshop App User Model Application needs to handle internal and external users External: App Users Internal: App Users Content: Owned by App Users (Internal and External) Description: Much like the classic user model, but all users (internal and external) are App users. Benefits: • Allows the creation of custom experiences for both internal and external users. • Good for instances where the Box web app is too permissive. This guards internal behavior. • Segmentation of content for managed accounts. This can allow a managed user to have application specific content through an App user account as well. • The App user model allows you to interact with end user accounts in a headless manner. This means you can bring your own identity system (e.g. Auth0 / Netlify) and map the ids. • API actions taken on behalf of users are recorded in the event stream, meaning that user
  • 8. 8Box Platform Developer Workshop Pattern 3: Service Account Model (When existing user object models already exists)
  • 9. 9Box Platform Developer Workshop Service Account Model Application needs to handle internal and external users, but a user object already exists External: Managed by Customer’s Application Internal: Managed Users Content: Owned by Service Account Description: Best used when a company user model already exists, or if you have users that are transient in nature with content that needs to be persistent. Benefits: • Useful when our app user model will complicate existing applications. • Useful in instances where there is not a good 1:1 end user / app user mapping, such as if end users are mapped as groups. • When the idea of folders don’t fit perfectly with the permission model the customer desires. • Can implement the Box token exchange model to ensure that broad scoped access to the service account doesn’t occur.
  • 10. 10Box Platform Developer Workshop Pattern 4: System to System Model (Back office apps and integrations, content ingestion)
  • 11. 11Box Platform Developer Workshop System to System Model No user content needs to be handled External: N/A Internal: N/A Content: Owned by Service Account Description: Service accounts are used here as the de-facto user object for system to system interactions and back office workflows. Benefits: • Perfect for apps where a user construct isn’t needed (e.g. departmental or company owned content that transcends user ownership). • Service account auth is cleanly handled by the JWT process. • Because a service account can be granted elevated scopes, this model allows you to tightly control what activities that the service account can perform. This gives you complete control of assigning permissions to different backend services.
  • 12. 12Box Platform Developer Workshop User Types, Application Auth Types, and Scopes
  • 13. 13Box Platform Developer Workshop Users Types
  • 14. 14Box Platform Developer Workshop Managed UserApp User External User Same as a managed user, but is not part of the same enterprise as the app. These are users that have been collaborated into content by a user in the enterprise. A regular Box user that is part of the same enterprise as the app. This user account can be accessed by the API or by logging in to box.com Users created by an app that may only be accessed by that app. This user account can only be accessed through API calls. Types of Users Defined within Box
  • 15. 15Box Platform Developer Workshop Application Auth Types
  • 16. 16Box Platform Developer Workshop JWT / OAuth 2OAuth 2 Developer Token Short lived developer prototyping token Use an existing identity system without logging into Box Use a user’s Box login as the identity system Types of Auth Systems Box Platform Employs
  • 17. 17Box Platform Developer Workshop OAuth 2 • User types: Managed users. • Requires that users be forwarded to Box to log in with their Box account to accept app permissions. • Access token that is generated is bound to the user who logged in.
  • 18. 18Box Platform Developer Workshop JWT / OAuth 2 • User types: Managed and app users. • Allows the use of an existing identity management system. • Allows the app to manage all user and config content. • Runs behind the scenes.
  • 19. 19Box Platform Developer Workshop Developer Token • User types: None. • Short lived (1 hour) token generated in the application config. • Cannot be refreshed programmatically, only manually. • Should only be used for quick testing & API requests, never in production.
  • 20. 20Box Platform Developer Workshop Scopes
  • 21. 21Box Platform Developer Workshop Application Scopes What your application will have permission to do on behalf of the application, enterprise, and users.
  • 22. 22Box Platform Developer Workshop Read / Write Files & Folders / Upload / View / Download files and folders, and update file versions. / Create / Read / Update / Delete collaborations, tags, tasks, comments, @mentions, task assignments, notifications, and collections. / View enterprise profile information.
  • 23. 23Box Platform Developer Workshop Manage Users / Create / Read / Update / Delete / Activate / Disable Users (app and managed). / Change primary login, reset password, change role for managed users and enterprise content.
  • 24. 24Box Platform Developer Workshop / Create / Read / Update / Delete groups and group memberships for users. Manage Groups
  • 25. 25Box Platform Developer Workshop / App can programmatically control webhooks (referred to as webhooks v2). / Create / Read / Update / Delete new or existing webhooks on files and folders. Manage Webhooks
  • 26. 26Box Platform Developer Workshop Manage Enterprise Properties / Read / Update enterprise attributes and reports. / Edit / Delete device pinners (what devices can use native Box applications).
  • 27. 27Box Platform Developer Workshop Manage Retention Policies / Create / Read / Update data retention policies. / Feature is tied to Box Governance service package.
  • 28. 28Box Platform Developer Workshop Links and Code Samples
  • 29. 29Box Platform Developer Workshop • Creating a JWT app client with the downloaded Box application config file https://github.com/jcleblanc/box-workshops/blob/master/app-auth/jwt-auth-config.js • Creating a JWT app client with manually created public/private keys: https://github.com/jcleblanc/box- workshops/blob/master/app-auth/jwt-auth-keys.js • Manually constructing the JWT claims process (no SDK): https://github.com/jcleblanc/box-examples/blob/master/node/samples/auth_jwt_api.js Code Samples Authentication and Authorization (JWT / OAuth2)
  • 30. 30Box Platform Developer Workshop • Create a new app user: https://github.com/jcleblanc/box-workshops/blob/master/app-auth/create-app-user.js • Create a new managed user: https://github.com/jcleblanc/box-workshops/blob/master/app-auth/create-managed-user.js • Delete a user by ID: https://github.com/jcleblanc/box-workshops/blob/master/app-auth/delete-user.js Code Samples User Management
  • 31. 31Box Platform Developer Workshop Service Accounts
  • 32. 32Box Platform Developer Workshop What is a Service Account
  • 33. 33Box Platform Developer Workshop Service Account Details • A user account that represents your application in an enterprise. • Can only be accessed programmatically. • Has its own file storage. • Generated automatically with a new JWT application. • By default, a service account only has access to its own data store. • Access to app users / managed users has to be explicitly enabled and requested. Access Rights
  • 34. 34Box Platform Developer Workshop Service Account Architecture
  • 35. 35Box Platform Developer Workshop Service Account User Account Maintain all user an application data within the service account. Users will be collaborated in on content. User specific data is maintained in the individual user account. All data access requests are made on behalf of the user. Where to Store User and Application Data
  • 36. 36Box Platform Developer Workshop Storing Data in the Service Account (Overview) • Improved data security due to tight controls over data location and sharing • Data retention and migration improves following customer deletion, as the user collaboration is simply removed. Benefits • Architecture complexity increases as a separate user folder structure needs to be maintained in the service account. • Single point of failure. Concerns
  • 37. 37Box Platform Developer Workshop Storing Data in the User Account (Overview) • Data is retained and owned by each user. • Simple repeatable architecture on each user account. Benefits • Data retention after customer deletion requires data migration or loss. • App has no control over data integrity. Concerns
  • 38. 38Box Platform Developer Workshop Users and Permissions
  • 39. 39Box Platform Developer Workshop App UsersNo User Access All Users Service account can access its own content, app user content, as well as content of any users in the enterprise Service account can access its own content and content for any app users it creates Service account can only access its own content User Access Levels for a Service Account
  • 40. 40Box Platform Developer Workshop Application Access • Application: Only access data and users within the JWT app. • Enterprise: Access data and users within the app as well as the entire enterprise that the app is a part of.
  • 41. 41Box Platform Developer Workshop Advanced Features • Perform actions as users: Use an As-User header with each request to act on behalf of a user. Access token passed is for service account. • Generate user access tokens: Create an access token scoped to a user account and use that token for each request.
  • 42. 42Box Platform Developer Workshop User Access Application Access Advanced Features No User Access Application None set App Users Only Application One or both set App and Managed Users Enterprise One or both set Setting User Access for the Service Account Settings to use to get the desired level of user access for a service account
  • 43. 43Box Platform Developer Workshop Links and Code Samples
  • 44. 44Box Platform Developer Workshop • Uploading file to service account: https://github.com/jcleblanc/box-workshops/blob/master/service-accounts/service-account-upload-sa.js • Uploading file to user account using As-User header: https://github.com/jcleblanc/box-workshops/blob/master/service-accounts/service-account-upload- asuser.js • Uploading file to user account using user access token: https://github.com/jcleblanc/box-workshops/blob/master/service-accounts/service-account-upload- usertoken.js Code Samples Service Accounts
  • 45. 45Box Platform Developer Workshop Collaboration and Permissioning
  • 46. 46Box Platform Developer Workshop Permission Structure
  • 47. 47Box Platform Developer Workshop / Waterfall permission model for folders / When users are collaborated in on a folder they can view all files / folders under that folder. Folder Permission Model
  • 48. 48Box Platform Developer Workshop Common Folder Models Duplicate Folders for each User A folder model is created and duplicated for each user. Collaborators or groups are added at each level. App User 1 App User 2 Config User Data Personnel Operations Config User Data Personnel Operations
  • 49. 49Box Platform Developer Workshop Common Folder Models Business Level Ownership The Box enterprise admin, or appropriate leadership level, would maintain the root folder level. Each business level is maintained under that level, where major business units may have minor units located underneath. Enterprise Admin Marketing Sales Products Parts & Services Engineering
  • 50. 50Box Platform Developer Workshop Collaborations
  • 51. 51Box Platform Developer Workshop Collaboration System • Service accounts and users start by only being able to access content in their own accounts. • For those accounts to access content from other accounts they will need to be collaborated in on content. • Users can be collaborated via ID, email, or group ID.
  • 52. 52Box Platform Developer Workshop / co-owner: Full access / editor: Full access minus invites / settings / previewer: Basic view and edit / previewer uploader: Previewer + uploader / uploader: Upload, basic metadata, and view / viewer: Preview + download and send links / viewer uploader: Viewer + uploader Collaboration Types
  • 53. 53Box Platform Developer Workshop Links and Code Samples
  • 54. 54Box Platform Developer Workshop • Add Collaborators to a Folder: https://github.com/jcleblanc/box-workshops/blob/master/collaboration/collaborate_add.js • Remove a Collaboration: https://github.com/jcleblanc/box-workshops/blob/master/collaboration/collaborate_remove.js Code Samples Collaborations and Permissions
  • 55. 55Box Platform Developer Workshop Error Conditions and Program Flow
  • 56. 56Box Platform Developer Workshop Access Token Errors (401: unauthorized)
  • 57. 57Box Platform Developer Workshop Causes of Unauthorized Errors Access token maintenance / Access tokens expire after 1 hour. At that point they must be refreshed using the refresh token. / The .Net, Java, and Node SDKs handle this refresh action automatically. For any other SDK or direct API integration token expiration responses (401: unauthorized) will need to be handled through the app.
  • 58. 58Box Platform Developer Workshop Scoping Errors (403: access_denied_insufficient_permissions)
  • 59. 59Box Platform Developer Workshop Causes of Insufficient Permissions Errors User and application scoping / There are typically two causes of a 403: access_denied_insufficient_permissions error, either the user an access token is scoped for doesn’t have permission to perform an action, or the application doesn’t. / For user permissions, try logging in as the user via the “Log in as this User” option in the admin console. Attempt to access the content manually. / For an application, ensure that the application has the correct scopes defined for the action that it is trying to perform.
  • 60. 60Box Platform Developer Workshop Item Location Errors (404: not_found)
  • 61. 61Box Platform Developer Workshop Causes of Not Found Errors Access Token Scoping / This may be encountered when trying to work with files and folders within Box when using a JWT / OAuth 2 based application with a service account. If the ID of the file / folder that is being accessed has been verified as present, this error will typically be caused by the account that the client is pointing to. For instance, if a file exists on a user account but the access token client is scoped for the service account, then a 404 error may be produced. / In cases of an access token that is scoped to the wrong account, use the As-User header or user scoped access token for user access, or a service account scoped access token for service account files.
  • 62. 62Box Platform Developer Workshop Name Conflicts (409: item_name_in_use)
  • 63. 63Box Platform Developer Workshop Causes of Name Conflicts Checking name uniqueness / File / folder names within a given folder must be uniquely named. When there is an attempt to create a new file / folder with a name that already exists, a 409: item_name_in_use, or a standard 409: conflict may be produced. / In case of a duplicate user login information being used when creating new managed users, a 409: user_login_already_used error would be produced. / These errors should be handled. Possible next steps in the program flow would be to attempt the same API request / login with revised information.
  • 64. 64Box Platform Developer Workshop Metadata Conflicts (409: tuple_already_exists)
  • 65. 65Box Platform Developer Workshop Causes of Metadata Conflicts Checking if metadata is already present on a file / If metadata for a template is already present within a file and a request to add metadata is made, the API will return a 409: tuple_already_exists error. / This error should be handled in a try / catch. When found, a request to update the existing metadata should then be made. / Update requests will need to use a JSON patch object.
  • 66. 66Box Platform Developer Workshop Rate Limits (429: rate_limit_exceeded)
  • 67. 67Box Platform Developer Workshop Causes of Rate Limiting Check Retry-After header for amount of time until next call / Making requests to auth a user each time they visit. Access tokens should be stored for future use. / Polling the event stream too often. Cache results when possible. / Producing too many requests from a single user (e.g. a service account). Limit is 10 API calls per second per user. / Making too many simultaneous upload requests from a single user. Limit is 4 uploads per second per user.
  • 68. 68Box Platform Developer Workshop Links and Code Samples
  • 69. 69Box Platform Developer Workshop • Handling 409 name conflict errors: https://github.com/jcleblanc/box-workshops/blob/master/error-conditions/409-name-conflict.js • Handling 409 metadata conflict errors: https://github.com/jcleblanc/box-workshops/blob/master/error-conditions/409-metadata-conflict.js • Errors codes produced by the Box APIs, and their solutions: https://developer.box.com/docs/error-codes Code Samples and Links Error Conditions
  • 70. 70Box Platform Developer Workshop Webhooks
  • 71. 71Box Platform Developer Workshop Webhooks V1
  • 72. 72Box Platform Developer Workshop / Manually created through the app dashboard: https://app.box.com/developers/console / Cannot be adjusted programmatically / Produces webhook events for all actions in an app and cannot be bound to a file / folder. Webhooks V1 Details
  • 73. 73Box Platform Developer Workshop Webhooks V2
  • 74. 74Box Platform Developer Workshop / Programmatically created and maintained through the Webhooks APIs. / Create, Read, Update, and Delete endpoints. / Can be bound to a single file or folder Webhooks V2 Details
  • 75. 75Box Platform Developer Workshop User Events ACCESS_GRANTED ACCESS_REVOKED COLLAB_ADD_COLLABORATOR COLLAB_INVITE_COLLABORATOR COLLAB_REMOVE_COLLABORATO R COLLAB_ROLE_CHANGE COMMENT_CREATE COMMENT DELETE ENABLE_TWO_FACTOR_AUTH GROUP_ADD_USER GROUP_REMOVE_USER ITEM_COPY ITEM_CREATE ITEM_DOWNLOAD ITEM_MAKE_CURRENT_VERSION ITEM_MOVE ITEM_PREVIEW ITEM_RENAME ITEM_SHARED ITEM_SHARED_CREATE ITEM_SHARED_UNSHARE ITEM_SYNC ITEM_TRASH ITEM_UNDELETE_VIA_TRASH ITEM_UNSYNC ITEM_UPLOAD LOCK_CREATE LOCK_DESTROY MASTER_INVITE_ACCEPT MASTER_INVITE_REJECT TAG_ITEM_CREATE TASK_ASSIGNMENT_CREATE TASK_CREATE
  • 76. 76Box Platform Developer Workshop Links and Code Samples
  • 77. 77Box Platform Developer Workshop • Create Webhook: https://github.com/jcleblanc/box-workshops/blob/master/webhooks/webhooks-create.js • Update Webhook: https://github.com/jcleblanc/box-workshops/blob/master/webhooks/webhooks-update.js • Delete Webhook: https://github.com/jcleblanc/box-workshops/blob/master/webhooks/webhooks-delete.js Code Samples Webhooks
  • 78. 78Box Platform Developer Workshop Token Management and UI Tools
  • 79. 79Box Platform Developer Workshop Downscoping Tokens
  • 80. 80Box Platform Developer Workshop Downscoped TokenAccess Token Client-Side Code Downscoped token is deployed to client-side code, mobile environment, or UI tool. New access token that is tightly restricted in access rights (read / write) for a file or folder. Standard OAuth2 access token that is fully scoped for an enterprise or user. Token Downscoping Process
  • 81. 81Box Platform Developer Workshop Item Scopes / item_delete: Delete file/folder. / item_download: Download file / folder. / item_preview: Preview file / folder. / item_rename: Rename file folder. / item_share: Create shared link. / item_upload: Upload new content.
  • 82. 82Box Platform Developer Workshop Annotation Scopes / annotation_edit: Update existing annotations on files. / annotation_view_all: View annotations from all users. / annotation_view_self: View annotations from yourself only.
  • 83. 83Box Platform Developer Workshop Box UI Tools
  • 84. 84Box Platform Developer Workshop Box UI Elements • UI components build with React (JavaScript library). • Authentication and token agnostic: Works with JWT and OAuth flows. • Use type agnostic: Works with app, managed, and external user types.
  • 85. 85Box Platform Developer Workshop Content Explorer Navigate Box files and folders within your app. Content Picker Select Box files and folders within your app Content Preview View docs, images, videos, 3D files, and more within your app Content Uploader Drag and drop files from a device into your app / Box.
  • 86. 86Box Platform Developer Workshop Base Scopes for Token / base_explorer / base_picker / base_preview / base_upload
  • 87. 87Box Platform Developer Workshop Links and Code Samples
  • 88. 88Box Platform Developer Workshop • Downscoping tokens: https://github.com/jcleblanc/box-workshops/blob/master/token-management/downscope-token.js • Box Elements (simple content explorer): https://github.com/jcleblanc/box-workshops/blob/master/token-management/box-elements.js • Box Elements (complex example for all Elements) https://github.com/jcleblanc/box-examples/tree/master/node/elements Code Samples Token Management and UI Tools
  • 89. 89Box Platform Developer Workshop Advanced Automation and Machine Learning
  • 90. 90Box Platform Developer Workshop Skills
  • 91. 91Box Platform Developer Workshop Custom SkillsFoundational Skills Extends upon the platform event pump / webhook system to hook to machine learning system with the intent of enhancing file metadata. Turned on manually through Box site account. Provides enhancements for images, video, audio, etc.
  • 92. 92Box Platform Developer Workshop Custom Skills
  • 93. 93Box Platform Developer Workshop Custom Skills • Allows for the enhancement of file metadata automatically through machine learning services. • Provides multiple card types for displaying data (timeline, transcript, keyword). • Uses tightly scoped read / write downscoped tokens.
  • 94. 94Box Platform Developer Workshop Example Skills Metadata Enhancement (Audio Data)
  • 95. 95Box Platform Developer Workshop MiddlewareFile Upload Machine Learning The machine learning system will take in the contents of a Box file, run analysis of the data, and respond with the enhanced metadata to the middleware layer. The middleware layer works as an intermediary between the Box file and ML system. It sends the file info the the ML system and updates the Box file metadata with its response. The skills process is triggered when a new or updated file is uploaded to Box. An event is sent to a specified endpoint with file access information. Skills Workflow Event Metadata Execute Callback
  • 96. Box Platform Overview Jonathan LeBlanc Director of Developer Advocacy, Box Twitter: @jcleblanc Github: https://github.com/jcleblanc

Notas do Editor

  1. Full description of roles: https://community.box.com/t5/Collaborate-By-Inviting-Others/Understanding-Collaborator-Permission-Levels/ta-p/144
  2. Review webhooks V1 by clicking on your app at https://app.box.com/developers/console then select “Webhooks” from the left menu.
  3. https://developer.box.com/reference#standard-user-events https://developer.box.com/reference#section-enterprise-events