Adding user to a group throws 404

Hi there,

We’re facing a weird issue for a few days now.

When trying to add an existing (app) user to an existing group, the API throws an error:

curl \
  -H "Content-Type: application/json" \
  -H 'Authorization: Bearer <token>' \
  -d '{"user":{"id":"aaa59478bbb"},"group":{"id":"yyy2197xxx"},"role":"admin"}'
    "type": "error",
    "status": 404,
    "code": "not_found",
                "reason": "invalid_parameter",
                "name": "group_tag",
                "message": "Invalid value 'g_yyy2197xxx'. 'group_tag' with value 'g_yyy2197xxx' not found"
    "help_url": "",
    "message": "Not Found",
    "request_id": "awo09uhgm4qzv4ww"

First I though this is a permission related issue, but this has been working just fine for years and nothing has been changed recently on our end.

Interestingly the operation succeeds when using the Box App, however it uses different endpoints (groups/validateAndConvertUsers & groups/yyy2197xxx/users/data).

Any idea what could be the root cause of this problem?


Hi @aberenyi ! :smiley:

It’s probably due to this new rule : Updates to permission scopes in manage groups – Box Support

Since a few weeks, you need to provide Enterprise access level permission to manage groups.

Can you please update the settings of your app, and select “Enterprise” in the App access level section ?
Then, don’t forget to reauthorize your app, before trying a new API call.


Hey @CodeBoxSeb,

Many thanks for the heads up!

It was the new rule indeed that caused the turmoil and I’ve managed to fix it by updating the app access level.


1 Like