Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.
I have been trying to use the dropbox apis through OAuth 2.0 authentication support. I found that the access token generated through the authorize and token end points seems to be valid for over 2 days. I had expected it to expire after a while (say couple of hours) assuming that to be a standard.
I would like to know the validity period of the access token. Can someone share provide some inputs?
Thanks!
See https://www.dropbox.com/developers/support#token-expiration.
Access tokens effectively don't expire.
Isn't it a security issue if the token don't expire? http://stackoverflow.com/a/7035926/537503
Because Dropbox does a database lookup for each request, our bearer tokens are immediately revocable by code or by the user (via https://www.dropbox.com/account/security). We reviewed our OAuth 2 implementation with respect to the issues raised in that Stack Overflow answer as well as many other sources, and we're comfortable with what we have from a security perspective.
🙂
Hi there!
If you need more help you can view your support options (expected response time for a ticket is 24 hours), or contact us on X or Facebook.
For more info on available support options for your Dropbox plan, see this article.
If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!