cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Community
English
Announcements
What’s new: end-to-end encryption, Replay and Dash updates. Find out more about these updates, new features and more here.

Dropbox API Support & Feedback

Find help with the Dropbox API from other developers.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Re: Each OAuth 2.0 re-authentication asks for user's permission

Labels:

Each OAuth 2.0 re-authentication asks for user's permission

serge30
Explorer | Level 3
‎08-23-2022 02:25 PM
Go to solution

Hello,

 

I'm developing JS SPA which uses Dropbox as a storage. It has no backend, thus I'm using OAuth 2.0 code flow with PKCE.

 

According to the documentation https://developers.dropbox.com/oauth-guide: 

 

If the token expires - throwing a 401 error - your application may simply re-authenticate as described above. If your token is expired, but the user is signed into Dropbox and their approval is still valid, the redirects will not require end-user input. A user’s approval remains valid until explicitly revoked.

 

But if I redirect user to auth link, it still requires user to accept application and grant permissions.

 

Can I configure Dropbox to ask user for permissions only first time? So further token refresh will be seamless for user.

 

--

Thanks,

Serhii

Labels:
  • 0 Likes
  • 2 Replies
  • 1,033 Views
0 Likes
1 Accepted Solution

Accepted Solutions

Greg-DB
Dropbox Staff
‎08-24-2022 06:03 AM
Go to solution

There isn't anything additional you should/can configure for this. Dropbox will automatically redirect through the flow when it can, but there are some exceptions. For example, it will only do so when an https:// redirect URI is supplied; it won't automatically redirect to http://. Also, if the user has linked accounts, they won't be automatically redirected, as they need to select which account to use.

View solution in original post

0 Likes
2 Replies 2

Greg-DB
Dropbox Staff
‎08-24-2022 06:03 AM
Go to solution

There isn't anything additional you should/can configure for this. Dropbox will automatically redirect through the flow when it can, but there are some exceptions. For example, it will only do so when an https:// redirect URI is supplied; it won't automatically redirect to http://. Also, if the user has linked accounts, they won't be automatically redirected, as they need to select which account to use.

0 Likes

serge30
Explorer | Level 3
‎08-24-2022 07:41 AM
Go to solution

Greg,

 

Oh, I run app locally on http://localhost:3000 So that's a case.

 

Thank you!

0 Likes
Need more support?