You might see that the Dropbox Community team have been busy working on some major updates to the Community itself! So, here is some info on what’s changed, what’s staying the same and what you can expect from the Dropbox Community overall.

Forum Discussion

ultralame's avatar
ultralame
Explorer | Level 3
3 years ago

Permanent Token?

I'm really just double checking here...  because it looks like DB is moving to the refresh-token model, and this is not robust enough for what I want to do.

 

We are trying to use Dropbox to upload files from a series of unattended test systems.  (Well, they are attended, but mainly by operators with with no authority).  We will have an engineer on site, but we want as minimal interaction as possible.

This means I would like to have a permanent token for a specific area within DB that we can upload and and download files by these automated systems.

 

Just to head off questions about it... these will be running in a la in a foreign country, and there will be minimal access.  So if DB cannot provide this type of access, then we will have to find another service.

 

 


  • ultralame wrote:

    ...
    This means I would like to have a permanent token for a specific area within DB that we can upload and and download files by these automated systems.

    ...


    The refresh token is permanent (if not intentionally revoked or until revoke). About the "specific area": application folder access (instead of full access), doesn't it cover your expectations?

  • Здравко's avatar
    Здравко
    Legendary | Level 20

    ultralame wrote:

    ...
    This means I would like to have a permanent token for a specific area within DB that we can upload and and download files by these automated systems.

    ...


    The refresh token is permanent (if not intentionally revoked or until revoke). About the "specific area": application folder access (instead of full access), doesn't it cover your expectations?

    • ultralame's avatar
      ultralame
      Explorer | Level 3

      Wait, the refresh token doesn't expire?

      So I can exchange the static refresh token for a new token each time I run?  I am deploying this to a couple dozen autonomous systems.  I need to be able to do this knowing that the token is basically permanent until I revoke it.

      • Здравко's avatar
        Здравко
        Legendary | Level 20

        ultralame wrote:

        Wait, the refresh token doesn't expire?
        ...


        Exactly. Or least to a moment (if any) when application itself revoke it or user, who granted access, revokes it.

         


        ultralame wrote:

        ...
        So I can exchange the static refresh token for a new token each time I run?  I am deploying this to a couple dozen autonomous systems.  I need to be able to do this knowing that the token is basically permanent until I revoke it.


        Take a look here for an example how all tokens can be "produced" and access token got "refreshed" using refresh token whenever needed. If you are using some supported SDK, usually refreshing is performed in the SDK on demand (function/method call) automatically (without you do anything in addition).