You might see that the Dropbox Community team have been busy working on some major updates to the Community itself! So, here is some info on what’s changed, what’s staying the same and what you can expect from the Dropbox Community overall.
Forum Discussion
Authentication to dropbox
1. I am developing an application, which will have about 4-6 users with different email addresses.
2. Then I have created a dropbox app and scope is the application folder (from this account)
3. So I did the part where you get the code, from there it is redirected to here --> http://localhost:5000/auth/dropbox-redirect?code=<generated-code>
4. However, i get an error.... this endpoint is the server side and the running code is this (ocalhost:3000/dashboard - is frontend)
const dbxRedirect = async (req, res, next) => {
try {
const { code, state } = req.query;
console.log(`code:${code}`);
const redirectUri = `https://dropbox.com/oauth2/authorize?response_type=code&client_id=${process.env.DBX_APP_KEY}&redirect_uri=http://localhost:3000/dashboard&token_access_type=legacy`;
try{
let token = await dbx.auth.getAccessTokenFromCode(redirectUri, code);
// store token and invalidate state
req.session.token = token;
console.log(token);
mycache.del(state);
res.send(token);
}catch(error){
console.log(error);
return next(error);
}
};
DropboxResponseError: Response failed with a 400 code
at D:\GitHubProjects\docMgtSys\document-management-system\node_modules\dropbox\cjs\src\response.js:34:11
at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
at async dbxRedirect (D:\GitHubProjects\docMgtSys\document-management-system\controllers\auth-controller.js:136:26) {
status: 400,
headers: Headers {
[Symbol(map)]: [Object: null prototype] {
'content-security-policy': [Array],
'content-type': [Array],
'accept-encoding': [Array],
date: [Array],
server: [Array],
'content-length': [Array],
'x-dropbox-response-origin': [Array],
'x-dropbox-request-id': [Array],
connection: [Array]
}
},
error: {
error: 'invalid_request',
error_description: 'unknown field "token_access_type"'
}
}
DropboxResponseError: Response failed with a 400 code
at D:\GitHubProjects\docMgtSys\document-management-system\node_modules\dropbox\cjs\src\response.js:34:11
at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
at async dbxRedirect (D:\GitHubProjects\docMgtSys\document-management-system\controllers\auth-controller.js:136:26)
at D:\GitHubProjects\docMgtSys\document-management-system\node_modules\dropbox\cjs\src\response.js:34:11
at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
at async dbxRedirect (D:\GitHubProjects\docMgtSys\document-management-system\controllers\auth-controller.js:136:26) {
status: 400,
headers: Headers {
[Symbol(map)]: [Object: null prototype] {
'content-security-policy': [Array],
'content-type': [Array],
'accept-encoding': [Array],
date: [Array],
server: [Array],
'content-length': [Array],
'x-dropbox-response-origin': [Array],
'x-dropbox-request-id': [Array],
connection: [Array]
}
},
error: {
error: 'invalid_request',
error_description: 'unknown field "token_access_type"'
}
}
DropboxResponseError: Response failed with a 400 code
at D:\GitHubProjects\docMgtSys\document-management-system\node_modules\dropbox\cjs\src\response.js:34:11
at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
at async dbxRedirect (D:\GitHubProjects\docMgtSys\document-management-system\controllers\auth-controller.js:136:26)
Tshaniii Also, since you're using the Dropbox JavaScript SDK, you shouldn't manage those URL parameters directly anyway. You would use the getAuthenticationUrl method to build your authorization URL.
And you shouldn't be passing the /oauth2/authorize authorization URL to getAccessTokenFromCode. That method takes your redirect URI and the authorization code. From what you shared, your redirect URI is "http://localhost:5000/auth/dropbox-redirect".
You can see an example of using this method here.
Tshaniii wrote:...const redirectUri = `https://dropbox.com/oauth2/authorize?response_type=code&client_id=${process.env.DBX_APP_KEY}&redirect_uri=http://localhost:3000/dashboard&token_access_type=legacy`;...
error: {
error: 'invalid_request',
error_description: 'unknown field "token_access_type"'
}...Hi Tshaniii,
Hm..🤔 Yes, there is no such type of access token literal. 'legacy' is something assumed by default! In particular 'legacy' is the same like 'online' (but might change at some point in the future; as has been different thing in the past). Take a look in documentation what 'token_access_type' can be. As is mentioned there, it's either 'online' or 'offline'; no other literal is allowed.
Hope this helps.
PS: One more note about your 'redirectUri'! As assigned it's not a redirect URI; it's URL that you should redirect your users to authorize your application (grant access to their accounts data). The redirect URI is part of this URL!
- Greg-DB
Dropbox Staff
Tshaniii Also, since you're using the Dropbox JavaScript SDK, you shouldn't manage those URL parameters directly anyway. You would use the getAuthenticationUrl method to build your authorization URL.
And you shouldn't be passing the /oauth2/authorize authorization URL to getAccessTokenFromCode. That method takes your redirect URI and the authorization code. From what you shared, your redirect URI is "http://localhost:5000/auth/dropbox-redirect".
You can see an example of using this method here.
About Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.
