RCLONE without username and password for MS Sharepoint remote

matteo · September 21, 2023, 7:33am

STOP and READ USE THIS TEMPLATE NO EXCEPTIONS - By not using this, you waste your time, our time and really hate puppies. Please remove these two lines and that will confirm you have read them.

What is the problem you are having with rclone?

Which information do i need to configure rclone with MS Sharepoint remote without the need to provide a username and password?

Run the command 'rclone version' and share the full output of the command.

[matte@localhost rclone]$ rclone version
rclone v1.64.0

os/version: oracle 7.9 (64 bit)
os/kernel: 5.4.17-2136.322.6.2.el7uek.x86_64 (x86_64)
os/type: linux
os/arch: amd64
go/version: go1.21.1
go/linking: static
go/tags: none

Which cloud storage system are you using? (eg Google Drive)

Onedrive - Sharepoint

The command you were trying to run (eg `rclone copy /tmp remote:tmp`)

rclone config

Please run 'rclone config redacted' and share the full output. If you get command not found, please make sure to update rclone.

[matte@localhost rclone]$ rclone config redacted
[NETCO_3]
type = onedrive
client_id = XXX
client_secret = XXX
token = XXX
auth_url = Sign in to your account
token_url = Sign in to your account
drive_id = XXX
drive_type = documentLibrary

[NETCO_4]
type = onedrive
client_id = XXX
client_secret = XXX
token = XXX

[NETCO_7]
type = onedrive
client_id = XXX
client_secret = XXX

[NETCO_9]
type = onedrive
client_id = XXX
client_secret = XXX
token = XXX
drive_id = XXX
drive_type = documentLibrary

[OPCO_1]
type = onedrive
client_id = XXX
client_secret = XXX
token = XXX
drive_id = XXX
drive_type = documentLibrary

Double check the config for sensitive info before posting publicly

A log from the command that you were trying to run with the `-vv` flag

2023/09/21 09:32:06 Failed to create file system for "NETCO_3:General": failed to get root: InvalidAuthenticationToken: CompactToken parsing failed with error code: 80049217

kapitainsky · September 21, 2023, 7:46am

You do not need username and password. You need authentication token - if you can get it by other means then simply copy paste it into your config.

matteo · September 21, 2023, 8:31am

How should i provide it?

kapitainsky · September 21, 2023, 8:35am

Open rclone.config in your favourite text editor and copy/paste token (replace XXX with you token)

[onedrive]
type = onedrive
drive_id = 12345
drive_type = personal
token = XXX

token look like:

{"access_token":"","token_type":"Bearer","refresh_token":"","expiry":"2023-09-16T11:42:09.087811+01:00"}

matteo · September 26, 2023, 7:18am

I have successfuly obtained the token and Rclone mounted the sharepoint folder. Suddendly after 1 hour the connection break due to token expire.
How should i generate a refresh token in order to keep always the folder mounted?
I seen that with a username the refresh token is generate automatically while with managed identity no.
Any help really appreciated.
BR

kapitainsky · September 26, 2023, 7:20am

Use rclone config to setup your remote. It will generate the right token for you.

matteo · September 26, 2023, 8:24am

i have tried unsuccessfully, rclone requires authorization by the browser with a personal account. I want to avoid this behavior.
May you please provide me an example on how to fill rclone config's parameter to use the token and get back also a refresh_token?

kapitainsky · September 26, 2023, 8:26am

IMO you need authorization. I am no sure why you want to avoid it.

ncw · September 27, 2023, 3:01pm

Rclone prints a URL when it opens the browser for auth.

You can copy and paste this into an incognito window if you need different auth than you have in your main browser window.

matteo · September 29, 2023, 9:45am

What i'm looking for is to grant access to rclone without an account.
What sysadmin told me is that we are providing to rclone all the information to access the azure app: client-id and secret; so he can't understand why it needs also an account.

Does rclone act as an app rather than a user?

ncw · September 29, 2023, 10:28am

I think you may be talking about this issue?

github.com/rclone/rclone

onedrive backend - support client credentials grant

opened 09:07PM - 24 May 22 UTC

gursharan001

enhancement Remote: One Drive

#### The associated forum post URL from `https://forum.rclone.org` https://foru…m.rclone.org/t/onedrive-backend-client-credentials-grant/30885 #### What is your current rclone version (output from `rclone version`)? rclone v1.58.0 - os/version: Microsoft Windows 10 Pro 21H2 (64 bit) - os/kernel: 10.0.19044.1645 (x86_64) - os/type: windows - os/arch: amd64 - go/version: go1.17.8 - go/linking: dynamic - go/tags: cmount #### What problem are you are trying to solve? Automatically include onedrive/sharepoint document libraries into rclone sync without requiring human intervention to obtain access tokens #### How do you think rclone should be changed to solve that? [onedrive backend](https://github.com/rclone/rclone/blob/master/backend/onedrive/onedrive.go) can be modified to support client credential grant - https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-client-creds-grant-flow #### How to use GitHub * Please use the 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to show that you are affected by the same issue. * Please don't comment if you have no relevant information to add. It's just extra noise for everyone subscribed to this issue. * Subscribe to receive notifications on status change and new comments.

matteo · October 4, 2023, 3:45pm

correct, if i well understand isn't yet solved?

Animosity022 · October 4, 2023, 3:49pm

Did you click on the link?

matteo · October 4, 2023, 4:02pm

yes, what i have understood is that client credential works for Azure Blob but not for Onedrive-shareporint. do i misunderstood?

Animosity022 · October 4, 2023, 4:06pm

Azure Blob and Onedrive/Sharepoint are two completely different back ends so not sure the connection.

The issue you've posted is about Sharepoint and the issue @ncw linked is the one about adding support for your ask.

It's still open so not solved/fixed.

burnwatt · November 1, 2023, 8:09pm

If I am to understand this thread correctly, RClone does not currently support authentication to Sharepoint/Onedrive using a ClientID/Secret? At least until onedrive backend - support client credentials grant · Issue #6197 · rclone/rclone (github.com) is resolved? I have a similar task only I need to use the credentials provided from an app principal as outlined here: Granting access using SharePoint App-Only | Microsoft Learn

system · December 1, 2023, 8:10pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.