Is there any way "built-in" way to perform authentication and / or authorization from Jive to the external storage to have some control over what you can do in the external storage?
I've seen that the request are sent with an authorization header, so I was wondering if it's possible to use this header to perform this task. Is this header sent for all requests? If so, what fields could be used?
If the request is coming from a tile action or a configuration dialog, then you will get the header. This should give you the instance id, user id, et. Reusing this to determine permissions in an implementation of the ESF is not unreasonable.