Forum Discussion

New member | Level 1

11 years ago

How to make sure clients dont misuse access tokens provided to them?

I want to develop a Dropbox Desktop app that would retrieve an access token via a web service (which in turn would perform OAuth2 authentication and then give the user a magic key that he can enter i...

API

Andreas D.8

New member | Level 1

11 years ago

Thanks, but how are other desktop apps handling this? Tunneling the traffic through my service seems a bad choice to me since it will create a lot of extra cost and pose an additional security risk for the client (since his/her data is passing through another third-party service before going to Dropbox).

About Dropbox API Support & Feedback

Find help with the Dropbox API from other developers.

The Dropbox Community team is active from Monday to Friday. We try to respond to you as soon as we can, usually within 2 hours.

If you need more help you can view your support options (expected response time for an email or ticket is 24 hours), or contact us on X, Facebook or Instagram.

For more info on available support options for your Dropbox plan, see this article.

If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!

Forum Discussion

How to make sure clients dont misuse access tokens provided to them?

About Dropbox API Support & Feedback

Related Content

Dropbox app won't start after removing File Provider

Problem downloading file using Dropbox-provided URL

Issues with Dropbox File Provider on the Mac

Should I upgrade to File Provider on my second Mac?

The provided user information isn't valid | iPhone XR

Recent Discussions

/oauth2/authorize (code flow) redirects to http://www.dropbox.com/home instead of redirect_uri

Add id and .tag fields to DeletedMetadata in the API

Shared Link - Download in .NET

Dropbox API server root certificate changes for .Net

GetCurrentAccountAsync API Failing for some Team Members while using Impersonation