cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Community
English
Announcements
If you’ve changed your email address, now's the perfect time to update it on your Dropbox account and we’re here to help! Learn more here.

Dropbox API Support & Feedback

Find help with the Dropbox API from other developers.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Re: OAuth 2.0 Access Token Validity

Labels:

OAuth 2.0 Access Token Validity

Amit1
New member | Level 1
‎02-23-2015 06:07 AM

I have been trying to use the dropbox apis through OAuth 2.0 authentication support. I found that the access token generated through the authorize and token end points seems to be valid for over 2 days. I had expected it to expire after a while (say couple of hours) assuming that to be a standard.

I would like to know the validity period of the access token. Can someone share provide some inputs?
Thanks!

Labels:
  • 0 Likes
  • 4 Replies
  • 5,740 Views
0 Likes
4 Replies 4

Steve M.
Dropbox Staff
‎02-23-2015 06:09 AM

See https://www.dropbox.com/developers/support#token-expiration.

Access tokens effectively don't expire.

0 Likes

Amit1
New member | Level 1
‎02-23-2015 10:21 AM

Isn't it a security issue if the token don't expire? http://stackoverflow.com/a/7035926/537503

0 Likes

Steve M.
Dropbox Staff
‎02-24-2015 02:00 AM

Because Dropbox does a database lookup for each request, our bearer tokens are immediately revocable by code or by the user (via https://www.dropbox.com/account/security). We reviewed our OAuth 2 implementation with respect to the issues raised in that Stack Overflow answer as well as many other sources, and we're comfortable with what we have from a security perspective.

0 Likes

Amit1
New member | Level 1
‎02-24-2015 05:16 AM

🙂

0 Likes
Need more support?