You might see that the Dropbox Community team have been busy working on some major updates to the Community itself! So, here is some info on what’s changed, what’s staying the same and what you can expect from the Dropbox Community overall.
Forum Discussion
No Refresh token is returned
Hey, I'm trying to figure out how the refresh token oauth2 process is working. When I navigate to https://www.dropbox.com/oauth2/authorize?client_id=<client_id>&token_access_type=offline&respon...
When you swap that code for an access token(https://api.dropbox.com/oauth2/token), the resulting payload will contain an
access_tokenand arefresh_token, which can be stored and used to issue a new access token later.
Its a new scoped app and "Access token expiration" is set to "Short-lived".
TaylorKrusen
Dropbox Staff
Dropbox StaffWhen you swap that code for an access token(https://api.dropbox.com/oauth2/token), the resulting payload will contain an access_token and a refresh_token, which can be stored and used to issue a new access token later.
Hi! I have exactly the same problem. Can you please clarify what you mean by "swap"?
Where should I use the code (https://api.dropbox.com/oauth2/token)? curl? With any parameter/ID?
Can you please give me an easy procedure to follow, or an example? Thank you
- Greg-DB
MarteIT By "swap", Taylor was referring to how the app sends the "authorization code" (which is received from the /oauth2/authorize OAuth step) in the request to the Dropbox /oauth2/token endpoint, and how the Dropbox API would send the access token and refresh token back in the response.
I recommend reading the OAuth Guide for an overview of how this process works. Then, refer to the authorization documentation for information on the specific endpoints and parameters to use, including examples of calling /oauth2/token using curl.
Hi Greg, thank you for your reply. I thought Taylor was referring to a somehow different procedure.
What you wrote was already clear to me and that's what I've been trying many times. The problem is that whenever I use the "authorization code" (which is received from the /oauth2/authorize OAuth step) and use it in the request to the Dropbox /oauth2/token endpoint, I get the following error:
{"error_description": "refresh token is malformed", "error": "invalid_grant"}
I'm just using the following command:
curl https://api.dropbox.com/oauth2/token -d grant_type=refresh_token -d refresh_token=["authorization code"] -u [xxxxxx]:[yyyyyyy]
Where am I wrong?
About Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.
