<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: IOS ASWebAuthenticationSession for OAuth in Dropbox API Support &amp; Feedback</title>
    <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334958#M19543</link>
    <description>&lt;P&gt;Thanks, I used the Code flow as it looked more secure.&lt;/P&gt;&lt;P&gt;It would seem that custom URL schemes would be as secure as LOCALHOST ... both of which can only work on the user's device.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;</description>
    <pubDate>Wed, 20 Mar 2019 19:23:14 GMT</pubDate>
    <dc:creator>RTS S.</dc:creator>
    <dc:date>2019-03-20T19:23:14Z</dc:date>
    <item>
      <title>IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334793#M19536</link>
      <description>&lt;P&gt;Previously I used a WKWebView&amp;nbsp; browser control to perform the OAUth. This allowed me to trap the redirect URL to obtain the access code. My redirect URL was http://localhost/Auth&lt;/P&gt;&lt;P&gt;Now I am using the Native browser interface ASWebAuthenticationSession This requires that you use an APPLICATION specific callback URL scheme for your redirect uri. i.e. &lt;STRONG&gt;MyAppName://Auth&lt;/STRONG&gt;&lt;/P&gt;&lt;P&gt;The Dropbox APP console allows me to specifiy this as the Redirect URL but gives an error when I try to call the&amp;nbsp; oauth2/authrize endpoint using this as the redirect_uri&lt;/P&gt;</description>
      <pubDate>Wed, 29 May 2019 09:07:18 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334793#M19536</guid>
      <dc:creator>RTS S.</dc:creator>
      <dc:date>2019-05-29T09:07:18Z</dc:date>
    </item>
    <item>
      <title>Re: IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334916#M19539</link>
      <description>&lt;P&gt;Can you share the full URL of the page displaying the error, as well as the text of the error itself?&amp;nbsp;Thanks in advance!&amp;nbsp;&lt;/P&gt;</description>
      <pubDate>Wed, 20 Mar 2019 15:35:49 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334916#M19539</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2019-03-20T15:35:49Z</dc:date>
    </item>
    <item>
      <title>Re: IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334947#M19540</link>
      <description>&lt;PRE&gt;    static let CLIENT_ID = "......"
    static let CLIENT_SECRET = "...."
    static let REDIRECT_URL = "myapp://Auth"
    static let OAUTH_URL = "https://www.dropbox.com/1/oauth2/authorize"
    
    override func OAuthURL() -&amp;gt; String {
      return String(format:"%@?redirect_uri=%@&amp;amp;response_type=code&amp;amp;client_id=%@&amp;amp;force_reapprove=true",
                    DropboxOAuthInfo.OAUTH_URL,
                    HTTP.urlEncode(DropboxOAuthInfo.REDIRECT_URL),
                    DropboxOAuthInfo.CLIENT_ID)
    }

&lt;/PRE&gt;</description>
      <pubDate>Wed, 20 Mar 2019 18:34:52 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334947#M19540</guid>
      <dc:creator>RTS S.</dc:creator>
      <dc:date>2019-03-20T18:34:52Z</dc:date>
    </item>
    <item>
      <title>Re: IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334948#M19541</link>
      <description>&lt;P&gt;The image did not get attached ... here it is as a link:&lt;/P&gt;&lt;P&gt;&lt;A href="https://www.dropbox.com/s/p6hmk3y4v52idc8/Image-1.jpg?dl=0" target="_blank"&gt;Screen Capture&lt;/A&gt;&lt;/P&gt;</description>
      <pubDate>Wed, 20 Mar 2019 18:39:35 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334948#M19541</guid>
      <dc:creator>RTS S.</dc:creator>
      <dc:date>2019-03-20T18:39:35Z</dc:date>
    </item>
    <item>
      <title>Re: IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334950#M19542</link>
      <description>&lt;P&gt;Thanks! Based on the code you shared, I see that you're using the "code" flow (i.e., 'response_type=code'). For the code flow, only "https://" is allowed in the redirect URI (unless on localhost), so "myapp://" wouldn't be allowed.&lt;/P&gt;
&lt;P&gt;Instead, for client-side applications like this, you should use the "token" flow, i.e., 'response_type=token'. That does allow custom URL schemes in redirect URIs, such as "myapp://".&amp;nbsp;&lt;/P&gt;
&lt;P&gt;For more information on how to use the token flow, please refer to &lt;A href="https://www.dropbox.com/developers/documentation/http/documentation#oauth2-authorize" target="_self"&gt;the /oauth2/authorize documentation&lt;/A&gt;.&lt;/P&gt;</description>
      <pubDate>Fri, 03 May 2019 12:54:13 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334950#M19542</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2019-05-03T12:54:13Z</dc:date>
    </item>
    <item>
      <title>Re: IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334958#M19543</link>
      <description>&lt;P&gt;Thanks, I used the Code flow as it looked more secure.&lt;/P&gt;&lt;P&gt;It would seem that custom URL schemes would be as secure as LOCALHOST ... both of which can only work on the user's device.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;</description>
      <pubDate>Wed, 20 Mar 2019 19:23:14 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/334958#M19543</guid>
      <dc:creator>RTS S.</dc:creator>
      <dc:date>2019-03-20T19:23:14Z</dc:date>
    </item>
    <item>
      <title>Re: IOS ASWebAuthenticationSession for OAuth</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/342628#M19790</link>
      <description>{"swagger": "2.0", "basePath": "/", "paths": {"/model/metadata": {"get": {"responses": {"200": {"des</description>
      <pubDate>Fri, 03 May 2019 02:07:00 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/IOS-ASWebAuthenticationSession-for-OAuth/m-p/342628#M19790</guid>
      <dc:creator>Eddyfc</dc:creator>
      <dc:date>2019-05-03T02:07:00Z</dc:date>
    </item>
  </channel>
</rss>

