Change Dropbox permissions to allow only Cryptomator files

[hdmi]

Basic Info

• I'm running Cryptomator on: Nexus 6P - 7.1.1 Developer Preview 1
• I'm using Cryptomator in veversion 0.2.0

Description

Instead of requesting full access to the Dropbox account, specify more the permission for only allowing access to the files and folders created by Cryptomator.

When linking an app to your Dropbox, it will request a specific level of access:

• Access to its own data. This data doesn't appear in a folder in Dropbox, but it's part of your storage quota.
• Access to its own folder in your Dropbox. The app will be able to access everything within its folder and know the path to that folder, but won't be able to access any other files or folders in your Dropbox.

(Source: Dropbox Q&A "What information can a third-party app access when I link it to my account?")

[tobihagemann]

I understand the thought behind this, but it's totally intended that the user can access his/her whole Dropbox. Otherwise, this would reduce usability immensely, if we'd stick to an app-specific folder inside Dropbox.

But maybe this shouldn't be a forced decision: We could give the user a choice between full access and app-specific access. My fear is that it's going to make it extremely confusing for new or less tech-savvy users. Something that can only be explained with a wall of text that users tend to skip anyway.

[markuskreusch]

@tobihagemann I agree. This could be way too complicated.

Some users just do not want to use a specific folder. And in addition it would still be possible to place vaults anywhere using the windows client. This would lead to the same confusion we have with iCloud.

[markuskreusch]

We could maybe allow changing this in the settings. By default full access is enabled. Tech-savvy users may change it and we could display an information link right next to the setting to explain what it means. Though a feature for the backlog IMHO.