<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: Seamless migration from non-expiring access token to refresh token? in Discuss Dropbox Developer &amp; API</title>
    <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593732#M2559</link>
    <description>&lt;P&gt;It's not possible to exchange a long-lived access token for a refresh token, however it is not necessary to make existing connected users switch anyway. Existing long-lived access tokens can continue to be used, as we don't currently have a plan to disable existing long-lived access tokens. (If that changes, we will of course announce that ahead of time.)&lt;/P&gt;</description>
    <pubDate>Wed, 27 Apr 2022 16:03:33 GMT</pubDate>
    <dc:creator>Greg-DB</dc:creator>
    <dc:date>2022-04-27T16:03:33Z</dc:date>
    <item>
      <title>Seamless migration from non-expiring access token to refresh token?</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593712#M2556</link>
      <description>&lt;P&gt;Hello,&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;We have an existing application that integrates with Dropbox via the .NET SDK. The application currently acquires user consent once and then stores a &lt;EM&gt;non-expiring&lt;/EM&gt; access token for future use.&amp;nbsp;We'd like to migrate to using&amp;nbsp;&lt;EM&gt;short-lived&lt;/EM&gt; access tokens, and wish to do so with minimal user interaction.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Switching to short-lived access tokens seems clear cut - we need to convert to storing a refresh token that can be used to request short-lived access tokens. However, we'd like to do this without asking the user to re-authorize. Is there a way to exchange a non-expiring access token for a refresh token without user interaction?&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;- Mark&lt;/P&gt;</description>
      <pubDate>Wed, 27 Apr 2022 15:15:07 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593712#M2556</guid>
      <dc:creator>Mark R.43</dc:creator>
      <dc:date>2022-04-27T15:15:07Z</dc:date>
    </item>
    <item>
      <title>Re: Seamless migration from non-expiring access token to refresh token?</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593732#M2559</link>
      <description>&lt;P&gt;It's not possible to exchange a long-lived access token for a refresh token, however it is not necessary to make existing connected users switch anyway. Existing long-lived access tokens can continue to be used, as we don't currently have a plan to disable existing long-lived access tokens. (If that changes, we will of course announce that ahead of time.)&lt;/P&gt;</description>
      <pubDate>Wed, 27 Apr 2022 16:03:33 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593732#M2559</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2022-04-27T16:03:33Z</dc:date>
    </item>
    <item>
      <title>Re: Seamless migration from non-expiring access token to refresh token?</title>
      <link>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593757#M2561</link>
      <description>&lt;P&gt;Hi Greg,&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Thanks for your reply.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;&amp;gt;&amp;nbsp; Existing long-lived access tokens can continue to be used, as we don't currently have a plan to disable...&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;If I hover over the access token expiration icon in the dev console, it states that "long-lived tokens are less secure and will be deprecated in the future". I interpreted this to mean that long-lived tokens would be deprecated for *existing* applications (at some point) and we wanted to get ahead of that change.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Good to hear that we can leave it alone for the time being, and thanks again!&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;- Mark&lt;/P&gt;</description>
      <pubDate>Wed, 27 Apr 2022 17:03:06 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Discuss-Dropbox-Developer-API/Seamless-migration-from-non-expiring-access-token-to-refresh/m-p/593757#M2561</guid>
      <dc:creator>Mark R.43</dc:creator>
      <dc:date>2022-04-27T17:03:06Z</dc:date>
    </item>
  </channel>
</rss>

