cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Community
English
Announcements
Want to learn some quick and useful tips to make your day easier? Check out how Calvin uses Replay to get feedback from other teams at Dropbox here.

Dropbox API Support & Feedback

Find help with the Dropbox API from other developers.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Authorization code flow no longer works?

Labels:

Authorization code flow no longer works?

Vladimir V.1
Explorer | Level 4
‎12-27-2016 04:46 PM
Go to solution

I am posting all required parameters to https://api.dropboxapi.com/oauth2/token but the servers keeps returning a very vague error:

 

REQUEST:

 

POST https://api.dropbox.com/oauth2/token HTTP/1.1
Accept: */*
Content-Type: application/json; charset=utf-8
Content-Length: 221
User-Agent: Adobe Photoshop Lightroom
Host: api.dropbox.com
Cache-Control: no-cache
{"client_id":"algt6407ye2ni5g","client_secret":"[***redacted***]","code":"qNW__3Oy_LgAAAAAAAAJPFofykpnyM-z9TB2CnveLSw","grant_type":"authorization_code","retirect_uri":"lightroom://com.alloyphoto.lightroom.export.dropbox"}

 

RESPONSE:

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 28 Dec 2016 00:37:38 GMT
Content-Type: application/json
Content-Length: 97
Connection: keep-alive
User-Agent: 
X-Dropbox-Request-Id: 5d5f1e75ac3b4712ccf212dd60636603
{"error_description": "No auth function available for given request", "error": "invalid_request"}

In fact, this code worked successfully very recently. Has something been changed? What am I doing wrong? Please help.

 

Labels:
  • 0 Likes
  • 7 Replies
  • 3,563 Views
0 Likes
1 Accepted Solution

Accepted Solutions

Greg-DB
Dropbox Staff
‎12-27-2016 06:05 PM
Go to solution

Thanks for the report! The request payload for /oauth2/token is expected to be delivered with a content type of "application/x-www-form-urlencoded", per RFC 6749 Section 4.1.3. It's possible we may have also been accepting "application/json" though. We'll look into it, but in the meantime, you can switch to "application/x-www-form-urlencoded", which I've confirmed is working as expected.

 

Also, for reference, but api.dropbox.com and api.dropboxapi.com are supported for this endpoint.

View solution in original post

0 Likes
7 Replies 7

Vladimir V.1
Explorer | Level 4
‎12-27-2016 05:37 PM
Go to solution

Just noticed a typo in the request code (retirect_uri), should be redirect_uri. But it is still not working.

0 Likes

Vladimir V.1
Explorer | Level 4
‎12-27-2016 05:54 PM
Go to solution

Next I realized I was hitting the wrong endpoint, needs to be https://api.dropboxapi.com, not https://api.dropbox.com.

Unfortunately I am still getting the same error.

0 Likes

Greg-DB
Dropbox Staff
‎12-27-2016 06:05 PM
Go to solution

Thanks for the report! The request payload for /oauth2/token is expected to be delivered with a content type of "application/x-www-form-urlencoded", per RFC 6749 Section 4.1.3. It's possible we may have also been accepting "application/json" though. We'll look into it, but in the meantime, you can switch to "application/x-www-form-urlencoded", which I've confirmed is working as expected.

 

Also, for reference, but api.dropbox.com and api.dropboxapi.com are supported for this endpoint.

0 Likes

Greg-DB
Dropbox Staff
‎12-28-2016 08:44 AM
Go to solution
I can't seem to find if/when we accepted JSON on this endpoint. Are you sure this previously worked with that content type?

In any case, x-www-form-urlencoded is the right way to call this. Is that working for you?
0 Likes

Vladimir V.1
Explorer | Level 4
‎12-28-2016 10:31 AM
Go to solution

Hi Greg,

I think you are right, I recently updated a large chunk of the code when I migrated my plugin from API v1 to v2. The v2 documentation states that RPC enpoints on the api.dropboxapi.com domain accept arguments as JSON in the request body.  For that reason I made all API calls to submit the payload in JSON, and that is where the code flow stopped working (which I didn't notice immediately). Either the documentation needs to be very explicit about the expected content type of that call, or the backend needs to be updated to accept JSON and thus provide claimed consistency. If I had a choice I'd go for option #2 as there is probably no valid reason for that particular endpoint not to recognize JSON.

 

Anyway, thanks for your prompt attention to this issue, I got the code working by reverting the call to form-urlencoded format.

0 Likes

Greg-DB
Dropbox Staff
‎12-28-2016 01:18 PM
Go to solution
Thanks for confirming that. I'm glad to hear this is sorted out.

The OAuth endpoints are a little different than the API endpoints, so I'll ask the team to clarify the documentation at least.
0 Likes

SauravAnand
Explorer | Level 4
‎09-11-2017 01:53 AM
Go to solution

Hi Vladimir,

 

Glad to hear about the fix. I'm also working on migration from V1 to V2 API. Can you please provide code block of GetAccessToken() using new end point "https://api.dropboxapi.com/oauth2/token". 

 

That would be really helpful.

Thank you.

0 Likes
Need more support?
Who's talking

Top contributors to this post

  • User avatar
    SauravAnand Explorer | Level 4
  • User avatar
    Greg-DB Dropbox Staff
  • User avatar
    Vladimir V.1 Explorer | Level 4
What do Dropbox user levels mean?