<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: authorization_code grant running right thru and not asking for App permission. in Dropbox API Support &amp; Feedback</title>
    <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215845#M11136</link>
    <description>For reference, it is expected that the automatic redirect won't happen in all cases. For example, it will only occur if the redirect URI starts with https://.</description>
    <pubDate>Wed, 12 Apr 2017 19:32:36 GMT</pubDate>
    <dc:creator>Greg-DB</dc:creator>
    <dc:date>2017-04-12T19:32:36Z</dc:date>
    <item>
      <title>authorization_code grant running right thru and not asking for App permission.</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215729#M11119</link>
      <description>&lt;P&gt;&lt;a href="https://www.dropboxforum.com/t5/user/viewprofilepage/user-id/50413"&gt;@Greg&lt;/a&gt; or moderator - can I post my client ID?&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;&lt;A href="https://www.dropbox.com/1/oauth2/authorize?response_type=code&amp;amp;client_id=XXXXXXXXX&amp;amp;redirect_uri=https://dash.dev.crmbuilders.com/dd/authorize&amp;amp;state=service1" target="_blank"&gt;https://www.dropbox.com/1/oauth2/authorize?response_type=code&amp;amp;client_id=XXXXXXXXX&amp;amp;redirect_uri=https://dash.dev.crmbuilders.com/dd/authorize&amp;amp;state=service1&lt;/A&gt;&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;The above with the correct Client ID runs right to the redirect_uri without asking for permission. On my local development environment, it works fine with the localhost redirect. This is our staging server.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;If I take out the redirect URI, it will ask for App Approval, if I put it in, it runs right thru.&lt;/P&gt;</description>
      <pubDate>Wed, 29 May 2019 09:23:46 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215729#M11119</guid>
      <dc:creator>mjoyner1</dc:creator>
      <dc:date>2019-05-29T09:23:46Z</dc:date>
    </item>
    <item>
      <title>Re: authorization_code grant running right thru and not asking for App permission.</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215816#M11128</link>
      <description>&lt;P&gt;Yes, it's safe to post your client ID as long as you don't mind exposing your app name. Client IDs aren't considered secret values.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Anyway, this behavior is expected in some cases. That is, if the user has already authorized the app to access their account,&amp;nbsp;Dropbox may automatically redirect the user to the redirect URI without having them explicitly authorize it again.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;If you'd like, you can disable this behavior using force_reapprove=true on /authorize:&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;&lt;A href="https://www.dropbox.com/developers/documentation/http/documentation#authorization" target="_blank"&gt;https://www.dropbox.com/developers/documentation/http/documentation#authorization&lt;/A&gt;&lt;/P&gt;</description>
      <pubDate>Wed, 12 Apr 2017 17:54:11 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215816#M11128</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2017-04-12T17:54:11Z</dc:date>
    </item>
    <item>
      <title>Re: authorization_code grant running right thru and not asking for App permission.</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215840#M11134</link>
      <description>&lt;P&gt;Greg,&amp;nbsp;&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Thank you for shedding some light on this. For some reason, my localhost always forces the reapprove. Thru a strange course of events, we have discovered that we actually have a hostname issue in building the /token redirect and thus........ it doesn't match and no token.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Your answer is awesome and thank you for your exemplary work in this forum.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;</description>
      <pubDate>Wed, 12 Apr 2017 19:17:32 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215840#M11134</guid>
      <dc:creator>mjoyner1</dc:creator>
      <dc:date>2017-04-12T19:17:32Z</dc:date>
    </item>
    <item>
      <title>Re: authorization_code grant running right thru and not asking for App permission.</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215845#M11136</link>
      <description>For reference, it is expected that the automatic redirect won't happen in all cases. For example, it will only occur if the redirect URI starts with https://.</description>
      <pubDate>Wed, 12 Apr 2017 19:32:36 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/authorization-code-grant-running-right-thru-and-not-asking-for/m-p/215845#M11136</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2017-04-12T19:32:36Z</dc:date>
    </item>
  </channel>
</rss>

