Tusk icon indicating copy to clipboard operation
Tusk copied to clipboard

Published 20 hours ago verified publisher icon subdavis

Use 'App folder' dropbox permission to restrict Tusk's access to a single folder in user's dropbox

Open antipasta opened this issue 7 years ago • 1 comments
trafficstars

This issue is a

  • [ ] bug
  • [X] feature
  • [ ] question

Please describe the current behavior, and explain why it's bad.

Dropbox support currently requires full read/write permission to all files in dropbox. This is a potential security risk if you have other sensitive files in your dropbox, especially since Tusk only needs access to the keepass db.

Please describe how you think it should change.

Provide the option for the 'app folder' dropbox permission, which creates a folder in the user's dropbox that the user moves files into to give Tusk access to them. This would fulfill the principle of least privilege for users that don't mind keeping their keepass db in Tusk's dropbox app folder. https://www.dropbox.com/developers/reference/developer-guide#app-permissions

antipasta avatar Apr 02 '18 12:04 antipasta

If you'd like to fully limit Tusks access to Dropbox, you should use a shared link. Get a shared link for your KeePass database and paste it into the shared link provider. Tusk will not be able to read any other file in Dropbox, and won't even need oAuth API access.

Thanks for the feature request.

subdavis avatar Apr 02 '18 14:04 subdavis