boxr 0.0.3 → 0.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 67e27a5d8aa317d4f5367ca297a6effba37f940c
-  data.tar.gz: b3541ffde249148cbdde2f1666479c1377993b7e
+  metadata.gz: 85a9e52479cab2e593a06741ba16b2e4a44f60d6
+  data.tar.gz: 20e2668309a30f3adbd07a0f494ccb97788144a0
 SHA512:
-  metadata.gz: 9837ce765c7cf63b3df57ab8fbf513b2e9f6745d447291bcedfd7a9bdc672028b185b93b52797c1fc9e36600f931fe6f40f0824122f659eff96ca052d3a3ae0d
-  data.tar.gz: bd84a9467ad8df991be52c8832cd63e0e5bb112352e20d7d1418b3ad7ddc77d98d4dbbb6c71eee253eeeb5d70a926fe10b4d1188ec4ec7df45c31aad7d536e01
+  metadata.gz: 46f24ca8c3bfb93a098c5dfbd63b69eeff3a316e662d119d096a0c92264608d755629fe933955d9ab5ad7b78d960c870ffb05bcc6427ee9bc78e1dda7568ca30
+  data.tar.gz: 7f62b487fe1526578ab85386dda281b6cabcf1f21a69fcc83b39cd469dc7109b060dea139a4775016e2f060269045b2641bff38dfcc144478335b7939f08d274

data/.env.example

@@ -3,7 +3,10 @@
 #3. click 'Edit Application'
 #4. check the boxes for 'Read and write all files and folders' and 'Manage an enterprise'
 #5. click 'Create a developer token'
-#6. paste the value below
-#7. save this file as .env
+#6. copy and paste the developer token below
+#7. copy and paste the client id and client secret of your Box app below
+#8. save this file as .env
 
-BOX_DEVELOPER_TOKEN=bsuwpLRJYN123NJTOisOvdvBCloboMqW
+BOX_DEVELOPER_TOKEN={a valid developer token for your Box app}
+BOX_CLIENT_ID={client id of your Box app}
+BOX_CLIENT_SECRET={client secret of your Box app}

data/Rakefile

@@ -1,5 +1,3 @@
-import "./lib/tasks/oauth.rake"
-
 require 'rspec/core/rake_task'
 require "bundler/gem_tasks"
 

data/examples/enterprise_events.rb

@@ -5,17 +5,17 @@ require 'awesome_print'
 client = Boxr::Client.new(ENV['BOX_DEVELOPER_TOKEN'])
 
 now = Time.now
-start_date = now - (60*60*24*30) #three days ago
-end_date = now - (60*60*24) #one day ago
+start_date = now - (60*60*24) #one day ago
+end_date = now
 
 stream_position = 0
 puts "fetching enterprise events..."
 loop do
-	event_response = client.enterprise_events(stream_position: stream_position, created_after: start_date.utc, created_before: end_date.utc)
-	event_response.events.each do |event|
-		ap event
-	end
-	stream_position = event_response.next_stream_position
+  event_response = client.enterprise_events(stream_position: stream_position, created_after: start_date.utc, created_before: end_date.utc)
+  event_response.events.each do |event|
+    puts "#{event.event_type}, #{event.created_by.name}"
+  end
+  stream_position = event_response.next_stream_position
 
-	break if event_response.events.empty?
+  break if event_response.events.empty?
 end

data/examples/oauth.rb

@@ -0,0 +1,27 @@
+require 'dotenv'; Dotenv.load("../.env")
+require 'boxr'
+require 'uri'
+require 'awesome_print'
+
+#make sure you have BOX_CLIENT_ID and BOX_CLIENT_SECRET set in your .env file
+#make sure you have the redirect_uri for your application set to something like https://localhost:1234 in the developer portal
+
+oauth_url = Boxr::oauth_url(URI.encode_www_form_component('your-anti-forgery-token'))
+
+puts "Copy the URL below and paste into a browser. Go through the OAuth flow using the desired Box account. \
+When you are finished your browser will redirect to a 404 error page. This is expected behavior. Look at the URL in the address \
+bar and copy the 'code' parameter value. Paste it into the prompt below. You only have 30 seconds to complete this task so be quick about it! \
+You will then see your access token and refresh token."
+
+puts
+puts "URL:  #{oauth_url}"
+puts
+
+print "Enter the code: "
+code = STDIN.gets.chomp.split('=').last
+
+ap Boxr::get_tokens(code)
+
+
+
+

data/examples/user_events.rb

@@ -8,17 +8,17 @@ cache = LruRedux::Cache.new(1000)
 
 stream_position = :now
 loop do 
-	puts "fetching events..."
-	event_response = client.user_events(stream_position: stream_position)
-	event_response.events.each do |event|
-		key = "/box-event/id/#{event.event_id}"
+  puts "fetching events..."
+  event_response = client.user_events(stream_position: stream_position)
+  event_response.events.each do |event|
+    key = "/box-event/id/#{event.event_id}"
 
-		#we need to de-dupe the events because we will receive multiple events with the same event_id; this is to ensure that we get the event
-		if (cache.fetch(event.event_id)==nil)
-			cache[event.event_id] = true
-			puts event.event_type
-		end
-	end
-	stream_position = event_response.next_stream_position
-	sleep 2
+    #we need to de-dupe the events because we will receive multiple events with the same event_id; this is to ensure that we get the event
+    if (cache.fetch(event.event_id)==nil)
+      cache[event.event_id] = true
+      puts event.event_type
+    end
+  end
+  stream_position = event_response.next_stream_position
+  sleep 2
 end

data/lib/boxr.rb

@@ -16,24 +16,25 @@ require 'boxr/search'
 require 'boxr/tasks'
 require 'boxr/metadata'
 require 'boxr/events'
+require 'boxr/auth'
 
 module Enumerable
-	def files
-		self.select{|i| i.type == 'file'}
-	end
+  def files
+    self.select{|i| i.type == 'file'}
+  end
 
-	def folders
-		self.select{|i| i.type == 'folder'}
-	end
+  def folders
+    self.select{|i| i.type == 'folder'}
+  end
 
-	def web_links
-		self.select{|i| i.type == 'web_link'}
-	end
+  def web_links
+    self.select{|i| i.type == 'web_link'}
+  end
 end
 
 module Boxr
   Oj.default_options = {:mode => :compat }
 
-	#The root folder in Box is always identified by 0
-	ROOT = 0
+  #The root folder in Box is always identified by 0
+  ROOT = 0
 end

data/lib/boxr/auth.rb

@@ -0,0 +1,46 @@
+module Boxr
+
+  def self.oauth_url(state, response_type: "code", scope: nil, folder_id: nil, box_client_id: ENV['BOX_CLIENT_ID'])
+    uri = "https://app.box.com/api/oauth2/authorize?response_type=#{response_type}&state=#{state}&client_id=#{box_client_id}"
+    uri = uri + "&scope=#{scope}" unless scope.nil?
+    uri = uri + "&folder_id=#{folder_id}" unless folder_id.nil?
+    uri
+  end
+
+  def self.get_tokens(code, grant_type: "authorization_code", username: nil, box_client_id: ENV['BOX_CLIENT_ID'], box_client_secret: ENV['BOX_CLIENT_SECRET'])
+    uri = "https://api.box.com/oauth2/token"
+    body = "code=#{code}&grant_type=#{grant_type}&client_id=#{box_client_id}&client_secret=#{box_client_secret}"
+    body = body + "&username=#{username}" unless username.nil?
+
+    auth_post(uri, body)
+  end
+
+  def self.refresh_tokens(refresh_token, box_client_id: ENV['BOX_CLIENT_ID'], box_client_secret: ENV['BOX_CLIENT_SECRET'])
+    uri = "https://api.box.com/oauth2/token"
+    body = "grant_type=refresh_token&refresh_token=#{refresh_token}&client_id=#{box_client_id}&client_secret=#{box_client_secret}"
+
+    auth_post(uri, body)
+  end
+
+  def self.revoke_tokens(token, box_client_id: ENV['BOX_CLIENT_ID'], box_client_secret: ENV['BOX_CLIENT_SECRET'])
+    uri = "https://api.box.com/oauth2/revoke"
+    body = "client_id=#{box_client_id}&client_secret=#{box_client_secret}&token=#{token}"
+
+    auth_post(uri, body)
+  end
+
+  private
+
+  def self.auth_post(uri, body)
+    client = HTTPClient.new
+    res = client.post(uri, body: body)
+
+    if(res.status==200)
+      body_json = Oj.load(res.body)
+      return Hashie::Mash.new(body_json)
+    else
+      raise BoxrException.new(status: res.status, body: res.body, header: res.header)
+    end
+  end
+
+end

data/lib/boxr/client.rb

@@ -1,217 +1,258 @@
 module Boxr
-	
-	class Client
-
-		API_URI = "https://api.box.com/2.0"
-		UPLOAD_URI = "https://upload.box.com/api/2.0"
-		FILES_URI = "#{API_URI}/files"
-		FILES_UPLOAD_URI = "#{UPLOAD_URI}/files/content"
-		FOLDERS_URI = "#{API_URI}/folders"
-		USERS_URI = "#{API_URI}/users"
-		GROUPS_URI = "#{API_URI}/groups"
-		GROUP_MEMBERSHIPS_URI = "#{API_URI}/group_memberships"
-		COLLABORATIONS_URI = "#{API_URI}/collaborations"
-		COMMENTS_URI = "#{API_URI}/comments"
-		SEARCH_URI = "#{API_URI}/search"
-		TASKS_URI = "#{API_URI}/tasks"
-		TASK_ASSIGNMENTS_URI = "#{API_URI}/task_assignments"
-		SHARED_ITEMS_URI = "#{API_URI}/shared_items"
-		METADATA_URI = "#{API_URI}/files"
-		EVENTS_URI = "#{API_URI}/events"
-
-		DEFAULT_LIMIT = 100
-		FOLDER_ITEMS_LIMIT = 1000
-
-		FOLDER_AND_FILE_FIELDS = [:type,:id,:sequence_id,:etag,:name,:created_at,:modified_at,:description,
-															:size,:path_collection,:created_by,:modified_by,:trashed_at,:purged_at,
-															:content_created_at,:content_modified_at,:owned_by,:shared_link,:folder_upload_email,
-															:parent,:item_status,:item_collection,:sync_state,:has_collaborations,:permissions,:tags,
-															:sha1,:shared_link,:version_number,:comment_count,:lock,:extension,:is_package,:can_non_owners_invite]
-		FOLDER_AND_FILE_FIELDS_QUERY = FOLDER_AND_FILE_FIELDS.join(',')
-
-		COMMENT_FIELDS = [:type,:id,:is_reply_comment,:message,:tagged_message,:created_by,:created_at,:item,:modified_at]
-		COMMENT_FIELDS_QUERY = COMMENT_FIELDS.join(',')
-		
-		TASK_FIELDS = [:type,:id,:item,:due_at,:action,:message,:task_assignment_collection,:is_completed,:created_by,:created_at]
-		TASK_FIELDS_QUERY = TASK_FIELDS.join(',')
-
-		COLLABORATION_FIELDS = [:type,:id,:created_by,:created_at,:modified_at,:expires_at,:status,:accessible_by,:role,:acknowledged_at,:item]
-		COLLABORATION_FIELDS_QUERY = COLLABORATION_FIELDS.join(',')
-
-		USER_FIELDS = [:type,:id,:name,:login,:created_at,:modified_at,:role,:language,:timezone,:space_amount,:space_used,
-									 :max_upload_size,:tracking_codes,:can_see_managed_users,:is_sync_enabled,:is_external_collab_restricted,
-									 :status,:job_title,:phone,:address,:avatar_uri,:is_exempt_from_device_limits,:is_exempt_from_login_verification,
-									 :enterprise,:my_tags]
-		USER_FIELDS_QUERY = USER_FIELDS.join(',')
-
-		GROUP_FIELDS = [:type, :id, :name, :created_at, :modified_at]
-		GROUP_FIELDS_QUERY = GROUP_FIELDS.join(',')
-
-		#Read this to see why the httpclient gem was chosen: http://bibwild.wordpress.com/2012/04/30/ruby-http-performance-shootout-redux/
-		#All instances of Boxr::Client will use this one class instance of HTTPClient; that way persistent HTTPS connections work.
-		#Plus, httpclient is thread-safe so we can use the same class instance with multiple instances of Boxr::Client
-		BOX_CLIENT = HTTPClient.new
-		BOX_CLIENT.send_timeout = 3600 #one hour; needed for lengthy uploads
-		BOX_CLIENT.transparent_gzip_decompression = true 
-
-		def initialize(token, as_user_id: nil)
-			@token = token
-			@as_user_id = as_user_id
-		end
-
-		def debug_device=(device)
-			if device
-				BOX_CLIENT.debug_dev = device
-				BOX_CLIENT.transparent_gzip_decompression = false
-			else
-				BOX_CLIENT.debug_dev = nil
-				BOX_CLIENT.transparent_gzip_decompression = true
-			end
-		end
-
-
-
-		private
-
-		def get(uri, query: nil, success_codes: [200], process_response: true, if_match: nil, box_api_header: nil)
-			headers = standard_headers()
-			headers['If-Match'] = if_match unless if_match.nil?
-			headers['BoxApi'] = box_api_header unless box_api_header.nil?
-
-			res = BOX_CLIENT.get(uri, query: query, header: headers)
-			check_response_status(res, success_codes)
-
-			if process_response
-				return processed_response res
-			else
-				return res.body, res
-			end
-		end
-
-		def get_with_pagination(uri, query: {}, limit: DEFAULT_LIMIT)
-			entries = []
-			offset = 0
-			headers = standard_headers()
-
-			begin
-				query[:limit] = limit
-				query[:offset] = offset
-				res = BOX_CLIENT.get(uri, query: query, header: headers)
-				
-				if (res.status==200)
-					body_json = Oj.load(res.body)
-					total_count = body_json["total_count"]
-					offset = offset + limit
-
-					entries << body_json["entries"]
-				else
-					raise BoxrException.new(status: res.status, body: res.body, header: res.header)
-				end
-			end until offset - total_count >= 0
-
-			entries.flatten.map{|i| Hashie::Mash.new(i)}
-		end
-
-		def post(uri, body, query: nil, success_codes: [201], process_body: true, content_md5: nil, content_type: nil, if_match: nil)
-			body = Oj.dump(body) if process_body
-
-			headers = standard_headers()
-			headers['If-Match'] = if_match unless if_match.nil?
-			headers["Content-MD5"] = content_md5 unless content_md5.nil?
-			headers["Content-Type"] = content_type unless content_type.nil?
-
-			res = BOX_CLIENT.post(uri, body: body, query: query, header: headers)
-			check_response_status(res, success_codes)
-
-			processed_response res
-		end
-
-		def put(uri, body, query: nil, success_codes: [200], content_type: nil, if_match: nil)
-			headers = standard_headers()
-			headers['If-Match'] = if_match unless if_match.nil?
-			headers["Content-Type"] = content_type unless content_type.nil?
-
-			res = BOX_CLIENT.put(uri, body: Oj.dump(body), query: query, header: headers)
-			check_response_status(res, success_codes)
-
-			processed_response res
-		end
-
-		def delete(uri, query: nil, success_codes: [204], if_match: nil)
-			headers = standard_headers()
-			headers['If-Match'] = if_match unless if_match.nil?
-
-			res = BOX_CLIENT.delete(uri, query: query, header: headers)
-			check_response_status(res, success_codes)
-
-			processed_response res
-		end
-
-		def options(uri, body, success_codes: [200])
-			headers = standard_headers()
-
-			res = BOX_CLIENT.options(uri, body: Oj.dump(body), header: headers)
-			check_response_status(res, success_codes)
-
-			processed_response res
-		end
-
-		def standard_headers()
-			headers = {"Authorization" => "Bearer #{@token}"}
-			headers['As-User'] = "#{@as_user_id}" unless @as_user_id.nil?
-			headers
-		end
-
-		def check_response_status(res, success_codes)
-			raise BoxrException.new(status: res.status, body: res.body, header: res.header) unless success_codes.include?(res.status)
-		end
-
-		def processed_response(res)
-			body_json = Oj.load(res.body)
-			return Hashie::Mash.new(body_json), res
-		end
-
-		def build_fields_query(fields, all_fields_query)
-			if fields == :all
-				{:fields => all_fields_query}
-			elsif fields.is_a?(Array) && fields.length > 0
-				{:fields => fields.join(',')}
-			else
-				{}
-			end
-		end
-
-		def restore_trashed_item(uri, name, parent_id)
-			attributes = {}
-			attributes[:name] = name unless name.nil?
-			attributes[:parent] = {id: parent_id} unless parent_id.nil?
-			
-			restored_item, response = post uri, attributes
-			restored_item
-		end
-
-		def create_shared_link(uri, item_id, access, unshared_at, can_download, can_preview)
-			if access.nil?
-				attributes = {shared_link: {}}
-			else
-				attributes = {shared_link: {access: access}}
-				attributes[:shared_link][:unshared_at] = unshared_at.to_datetime.rfc3339 if unshared_at
-				attributes[:shared_link][:permissions] = {} unless can_download.nil? && can_preview.nil?
-				attributes[:shared_link][:permissions][:can_download] = can_download unless can_download.nil?
-				attributes[:shared_link][:permissions][:can_preview] = can_preview unless can_preview.nil?
-			end
-
-			updated_item, response = put uri, attributes
-			updated_item
-		end
-
-		def disable_shared_link(uri, item_id)
-			attributes = {shared_link: nil}
-
-			updated_item, response = put uri, attributes
-			updated_item
-		end
-
-	end
+  
+  class Client
+
+    attr_reader :access_token, :refresh_token, :box_client_id, :box_client_secret, :identifier, :as_user_id
+
+    API_URI = "https://api.box.com/2.0"
+    UPLOAD_URI = "https://upload.box.com/api/2.0"
+    FILES_URI = "#{API_URI}/files"
+    FILES_UPLOAD_URI = "#{UPLOAD_URI}/files/content"
+    FOLDERS_URI = "#{API_URI}/folders"
+    USERS_URI = "#{API_URI}/users"
+    GROUPS_URI = "#{API_URI}/groups"
+    GROUP_MEMBERSHIPS_URI = "#{API_URI}/group_memberships"
+    COLLABORATIONS_URI = "#{API_URI}/collaborations"
+    COMMENTS_URI = "#{API_URI}/comments"
+    SEARCH_URI = "#{API_URI}/search"
+    TASKS_URI = "#{API_URI}/tasks"
+    TASK_ASSIGNMENTS_URI = "#{API_URI}/task_assignments"
+    SHARED_ITEMS_URI = "#{API_URI}/shared_items"
+    METADATA_URI = "#{API_URI}/files"
+    EVENTS_URI = "#{API_URI}/events"
+
+    DEFAULT_LIMIT = 100
+    FOLDER_ITEMS_LIMIT = 1000
+
+    FOLDER_AND_FILE_FIELDS = [:type,:id,:sequence_id,:etag,:name,:created_at,:modified_at,:description,
+                              :size,:path_collection,:created_by,:modified_by,:trashed_at,:purged_at,
+                              :content_created_at,:content_modified_at,:owned_by,:shared_link,:folder_upload_email,
+                              :parent,:item_status,:item_collection,:sync_state,:has_collaborations,:permissions,:tags,
+                              :sha1,:shared_link,:version_number,:comment_count,:lock,:extension,:is_package,:can_non_owners_invite]
+    FOLDER_AND_FILE_FIELDS_QUERY = FOLDER_AND_FILE_FIELDS.join(',')
+
+    COMMENT_FIELDS = [:type,:id,:is_reply_comment,:message,:tagged_message,:created_by,:created_at,:item,:modified_at]
+    COMMENT_FIELDS_QUERY = COMMENT_FIELDS.join(',')
+    
+    TASK_FIELDS = [:type,:id,:item,:due_at,:action,:message,:task_assignment_collection,:is_completed,:created_by,:created_at]
+    TASK_FIELDS_QUERY = TASK_FIELDS.join(',')
+
+    COLLABORATION_FIELDS = [:type,:id,:created_by,:created_at,:modified_at,:expires_at,:status,:accessible_by,:role,:acknowledged_at,:item]
+    COLLABORATION_FIELDS_QUERY = COLLABORATION_FIELDS.join(',')
+
+    USER_FIELDS = [:type,:id,:name,:login,:created_at,:modified_at,:role,:language,:timezone,:space_amount,:space_used,
+                   :max_upload_size,:tracking_codes,:can_see_managed_users,:is_sync_enabled,:is_external_collab_restricted,
+                   :status,:job_title,:phone,:address,:avatar_uri,:is_exempt_from_device_limits,:is_exempt_from_login_verification,
+                   :enterprise,:my_tags]
+    USER_FIELDS_QUERY = USER_FIELDS.join(',')
+
+    GROUP_FIELDS = [:type, :id, :name, :created_at, :modified_at]
+    GROUP_FIELDS_QUERY = GROUP_FIELDS.join(',')
+
+    #Read this to see why the httpclient gem was chosen: http://bibwild.wordpress.com/2012/04/30/ruby-http-performance-shootout-redux/
+    #All instances of Boxr::Client will use this one class instance of HTTPClient; that way persistent HTTPS connections work.
+    #Plus, httpclient is thread-safe so we can use the same class instance with multiple instances of Boxr::Client
+    BOX_CLIENT = HTTPClient.new
+    BOX_CLIENT.send_timeout = 3600 #one hour; needed for lengthy uploads
+    BOX_CLIENT.transparent_gzip_decompression = true 
+
+    def self.turn_on_debugging(device=STDOUT)
+      BOX_CLIENT.debug_dev = device
+      BOX_CLIENT.transparent_gzip_decompression = false
+    end
+
+    def self.turn_off_debugging
+      BOX_CLIENT.debug_dev = nil
+      BOX_CLIENT.transparent_gzip_decompression = true
+    end
+
+    def initialize(access_token, refresh_token: nil, box_client_id: ENV['BOX_CLIENT_ID'], box_client_secret: ENV['BOX_CLIENT_SECRET'], 
+                    identifier: nil, as_user_id: nil, &token_refresh_listener)
+      @access_token = access_token
+      @refresh_token = refresh_token
+      @box_client_id = box_client_id
+      @box_client_secret = box_client_secret
+      @identifier = identifier
+      @as_user_id = as_user_id
+      @token_refresh_listener = token_refresh_listener
+    end
+
+
+    private
+
+    def get(uri, query: nil, success_codes: [200], process_response: true, if_match: nil, box_api_header: nil)
+      res = with_auto_token_refresh do
+        headers = standard_headers()
+        headers['If-Match'] = if_match unless if_match.nil?
+        headers['BoxApi'] = box_api_header unless box_api_header.nil?
+
+        BOX_CLIENT.get(uri, query: query, header: headers)
+      end
+
+      check_response_status(res, success_codes)
+
+      if process_response
+        return processed_response res
+      else
+        return res.body, res
+      end
+    end
+
+    def get_with_pagination(uri, query: {}, limit: DEFAULT_LIMIT)
+      entries = []
+      offset = 0
+
+      begin
+        query[:limit] = limit
+        query[:offset] = offset
+        res = with_auto_token_refresh do
+          headers = standard_headers()
+          BOX_CLIENT.get(uri, query: query, header: headers)
+        end
+        
+        if (res.status==200)
+          body_json = Oj.load(res.body)
+          total_count = body_json["total_count"]
+          offset = offset + limit
+
+          entries << body_json["entries"]
+        else
+          raise BoxrException.new(status: res.status, body: res.body, header: res.header)
+        end
+      end until offset - total_count >= 0
+
+      entries.flatten.map{|i| Hashie::Mash.new(i)}
+    end
+
+    def post(uri, body, query: nil, success_codes: [201], process_body: true, content_md5: nil, content_type: nil, if_match: nil)
+      body = Oj.dump(body) if process_body
+
+      res = with_auto_token_refresh do
+        headers = standard_headers()
+        headers['If-Match'] = if_match unless if_match.nil?
+        headers["Content-MD5"] = content_md5 unless content_md5.nil?
+        headers["Content-Type"] = content_type unless content_type.nil?
+
+        BOX_CLIENT.post(uri, body: body, query: query, header: headers)
+      end
+
+      check_response_status(res, success_codes)
+
+      processed_response res
+    end
+
+    def put(uri, body, query: nil, success_codes: [200], content_type: nil, if_match: nil)
+      res = with_auto_token_refresh do
+        headers = standard_headers()
+        headers['If-Match'] = if_match unless if_match.nil?
+        headers["Content-Type"] = content_type unless content_type.nil?
+        
+        BOX_CLIENT.put(uri, body: Oj.dump(body), query: query, header: headers)
+      end
+
+      check_response_status(res, success_codes)
+
+      processed_response res
+    end
+
+    def delete(uri, query: nil, success_codes: [204], if_match: nil)
+      res = with_auto_token_refresh do
+        headers = standard_headers()
+        headers['If-Match'] = if_match unless if_match.nil?
+        
+        BOX_CLIENT.delete(uri, query: query, header: headers)
+      end
+
+      check_response_status(res, success_codes)
+
+      processed_response res
+    end
+
+    def options(uri, body, success_codes: [200])
+      res = with_auto_token_refresh do
+        headers = standard_headers()
+        BOX_CLIENT.options(uri, body: Oj.dump(body), header: headers)
+      end
+
+      check_response_status(res, success_codes)
+
+      processed_response res
+    end
+
+    def standard_headers()
+      headers = {"Authorization" => "Bearer #{@access_token}"}
+      headers['As-User'] = "#{@as_user_id}" unless @as_user_id.nil?
+      headers
+    end
+
+    def with_auto_token_refresh
+      return yield unless @refresh_token
+
+      res = yield
+      if res.status == 401
+        auth_header = res.header['WWW-Authenticate'][0]
+        if auth_header && auth_header.include?('invalid_token')
+          new_tokens = Boxr::refresh_tokens(@refresh_token, box_client_id: box_client_id, box_client_secret: box_client_secret)
+          @access_token = new_tokens.access_token
+          @refresh_token = new_tokens.refresh_token
+          @token_refresh_listener.call(@access_token, @refresh_token, @identifier) if @token_refresh_listener
+          res = yield
+        end
+      end
+
+      res
+    end
+
+    def check_response_status(res, success_codes)
+      raise BoxrException.new(status: res.status, body: res.body, header: res.header) unless success_codes.include?(res.status)
+    end
+
+    def processed_response(res)
+      body_json = Oj.load(res.body)
+      return Hashie::Mash.new(body_json), res
+    end
+
+    def build_fields_query(fields, all_fields_query)
+      if fields == :all
+        {:fields => all_fields_query}
+      elsif fields.is_a?(Array) && fields.length > 0
+        {:fields => fields.join(',')}
+      else
+        {}
+      end
+    end
+
+    def restore_trashed_item(uri, name, parent_id)
+      attributes = {}
+      attributes[:name] = name unless name.nil?
+      attributes[:parent] = {id: parent_id} unless parent_id.nil?
+      
+      restored_item, response = post uri, attributes
+      restored_item
+    end
+
+    def create_shared_link(uri, item_id, access, unshared_at, can_download, can_preview)
+      if access.nil?
+        attributes = {shared_link: {}}
+      else
+        attributes = {shared_link: {access: access}}
+        attributes[:shared_link][:unshared_at] = unshared_at.to_datetime.rfc3339 unless unshared_at.nil?
+        attributes[:shared_link][:permissions] = {} unless can_download.nil? && can_preview.nil?
+        attributes[:shared_link][:permissions][:can_download] = can_download unless can_download.nil?
+        attributes[:shared_link][:permissions][:can_preview] = can_preview unless can_preview.nil?
+      end
+
+      updated_item, response = put uri, attributes
+      updated_item
+    end
+
+    def disable_shared_link(uri, item_id)
+      attributes = {shared_link: nil}
+
+      updated_item, response = put uri, attributes
+      updated_item
+    end
+
+  end
 
 end