<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: Dropbox Access Token Validity in Discuss Dropbox Developer &amp; API</title>
    <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299601#M204</link>
    <description>&lt;P&gt;Yes, deleting the app will also&amp;nbsp;prevent the access token from working.&lt;/P&gt;</description>
    <pubDate>Thu, 27 Sep 2018 14:56:04 GMT</pubDate>
    <dc:creator>Greg-DB</dc:creator>
    <dc:date>2018-09-27T14:56:04Z</dc:date>
    <item>
      <title>Dropbox Access Token Validity</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299501#M201</link>
      <description>&lt;P&gt;i created an app using dropbox access token for my wordpress website&amp;nbsp; but when i right click on the website page I can see the access token.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;If someone has access to this access token, will they be able to access my&amp;nbsp;dropbox&amp;nbsp; and its files ?&lt;/P&gt;</description>
      <pubDate>Wed, 29 May 2019 09:05:44 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299501#M201</guid>
      <dc:creator>saxsax</dc:creator>
      <dc:date>2019-05-29T09:05:44Z</dc:date>
    </item>
    <item>
      <title>Re: Dropbox Access Token Validity</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299599#M202</link>
      <description>&lt;P&gt;Yes, an access token enables access to an account via the&amp;nbsp;Dropbox API to the extent allowed by &lt;A href="https://www.dropbox.com/developers/reference/developer-guide#app-permissions" target="_self"&gt;the app's permission&lt;/A&gt;. For this reason, you should never share or expose an access token for your own account to others users. Users should only ever have access to their own access token(s).&lt;/P&gt;
&lt;P&gt;Given that your access token has been published, I&amp;nbsp;recommend &lt;A href="https://www.dropbox.com/developers/documentation/http/documentation#auth-token-revoke" target="_blank"&gt;revoking&lt;/A&gt; it.&amp;nbsp;&lt;/P&gt;
&lt;P&gt;For the functionality you're looking for, you can instead have the users upload to your own server first, and then upload to&amp;nbsp;Dropbox from your server. That way, the access token only needs to exist on your server, not exposed to the end-users.&lt;/P&gt;
&lt;P&gt;Alternatively, you could use&amp;nbsp;&lt;A href="https://www.dropbox.com/developers/documentation/http/documentation#files-get_temporary_upload_link" target="_blank"&gt;/2/files/get_temporary_upload_link&lt;/A&gt;&amp;nbsp;(again from your server) to pass down a temporary upload link on the page so the file can be uploaded directly from the browser without exposing the access token client-side. (Note that this endpoint is still in preview though.)&lt;/P&gt;</description>
      <pubDate>Thu, 27 Sep 2018 14:44:59 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299599#M202</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2018-09-27T14:44:59Z</dc:date>
    </item>
    <item>
      <title>Re: Dropbox Access Token Validity</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299600#M203</link>
      <description>&lt;P&gt;Thanks... if I delete the app, will that revoke the access token as well ?&lt;/P&gt;&lt;P&gt;I have deleted the app from my acccount&amp;nbsp;&lt;/P&gt;</description>
      <pubDate>Thu, 27 Sep 2018 14:55:16 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299600#M203</guid>
      <dc:creator>saxsax</dc:creator>
      <dc:date>2018-09-27T14:55:16Z</dc:date>
    </item>
    <item>
      <title>Re: Dropbox Access Token Validity</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299601#M204</link>
      <description>&lt;P&gt;Yes, deleting the app will also&amp;nbsp;prevent the access token from working.&lt;/P&gt;</description>
      <pubDate>Thu, 27 Sep 2018 14:56:04 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Dropbox-Access-Token-Validity/m-p/299601#M204</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2018-09-27T14:56:04Z</dc:date>
    </item>
  </channel>
</rss>

