Docs
secret.conf
Secret configuration for Box connector, including client credentials and short-lived authorization code.
SECRET.CONF
SECRET.CONF
Note
First, configure all other parameters in secret.conf, and set the auth_code at the very end. The authorization code is valid for only 30 seconds, so you must add it to secret.conf and start the connector within that time window.
Specifications
[secret-stanza-name] client_id = Box client id client_secret = Box client secret auth_code = authorization code
Example
[box_creds] client_id = aes$hnxIY2NdERnasYOJlXXXXXXXXCjCpWsDD64cpX5fb client_secret = aes$YZ3D0HU9a1iuAR9CiXXXXXXXfJ7W2lvDCVrXlak auth_code = aes$P8UvPxcCr6XXXXXXXX5g9Si7N+w8OYrbYTjFfXXXX
Steps to obtain Authorization Code
- Construct the Authorization URL:
# Replace YOUR_CLIENT_ID: https://account.box.com/api/oauth2/authorize?response_type=code&client_id=YOUR_CLIENT_ID&redirect_uri=https://dataelicit.com/callback # Example: https://account.box.com/api/oauth2/authorize?response_type=code&client_id=44r95lug72znzqt821n87r84espqom&redirect_uri=https://dataelicit.com/callback
Open the URL in a browser, click Grant Access, copy the Auth code, then paste it inside secret.conf under auth_code. Restart the connector.
Important
The authorization code is valid for only 30 seconds. Add it to secret.conf and restart the connector immediately.
Troubleshooting
If you see “Authorization code authentication failed” in var/log/box/auth.log , the code has expired. Generate a new one.
✉️Still stuck? How can we help?
Updated on July 6, 2025