Run API on internal server with http instead of https

Saird_Kuipers · ‎11-13-2019

Dear all,

I developed a webbased django app locally which works perfectly fine. No I'm stuggling to run the app on the internal server. The Redirect URIs returns:' Non-local OAuth 2 redirect URIs may not start with "http:" or "javascript&colon;"' But the internal server is not jet capable of handling https. Is it possible to run the OAuth2 on the internal server with http or do I need to change the internal server settings? If it is possible what is the correct approach to get this done.

Kind regards,

Siard Kuipers

Greg-DB · ‎11-13-2019

As a matter of security, Dropbox only allows "localhost" redirect URIs to use http://, and there isn't a setting to disable or workaround this. So, the only options would be:

use a "localhost" server for your http:// redirect URI for development/testing
use the "code" flow ("response_type=code") but omit the redirect URI entirely, so that the user has to copy/paste the authorization code manually
switch to https://

Run API on internal server with http instead of https

Run API on internal server with http instead of https

Top contributors to this post