We are aware of the issue with the badge emails resending to everyone, we apologise for the inconvenience - learn more here.

Forum Discussion

lalith-mcw's avatar
lalith-mcw
Explorer | Level 3
2 years ago

After token refresh contents still need authorization to download

import dropbox box = dropbox.Dropbox(oauth2_refresh_token=<Refresh_Token>, app_key=<app_key>, app_secret=<app_secret>)   With logging info able to see the following message: ```  INFO : R...
API
  • Здравко's avatar
    Здравко
    2 years ago

    Hi again lalith-mcw,

    I just tried it out and it's working for me. Are you certainly passed the refresh token to and not something else? 🧐 Also to work correctly, the app key must match to the refresh token (for PKCE app secret is optional, but when given must be correct and matching too).

    You can check if your params are correct using following command line:

    curl https://api.dropbox.com/oauth2/token -d grant_type=refresh_token -d refresh_token=<YOUR_REFRESH_TOKEN_HERE> -d client_id=<YOUR_APP_KEY_HERE>

    Replace  <YOUR_REFRESH_TOKEN_HERE> to the content of refresh_token var and <YOUR_APP_KEY_HERE> to the content of key var from your code. If everything is correct you will get back something like:

    {"access_token":"sl.AbX9y6...","expires_in":14400,"token_type":"bearer"}

    Otherwise, you will get appropriate error message and should fix whatever needed.

    Good luck.

     

    Add: You can get as working example one my earlier post here.

DB-Des's avatar
DB-Des
Icon for Dropbox Engineer rankDropbox Engineer

Hi!

 

We'd recommend confirming the following:

  • Make sure the refresh token value being passed to oauth2_refresh_token corresponds to the app key and secret being used
  • Make sure that the value being passed to oauth2_refresh_token is a refresh_token and not an access_token

 

Those are typically the reasons why invalid_access_token error would be thrown for a refresh token.

Здравко's avatar
Здравко
Legendary | Level 20
2 years ago
DB-Des wrote:

...

Those are typically the reasons why invalid_access_token error would be thrown for a refresh token.

DB-Des, Is the API that returns the 'invalid_access-token' error in such cases? 🧐 Isn't better making error text to match what actually happens? Why when error code is 400 and match to 'invalid_grant', the SDK always assumes invalid access token, while there are different cases possible?

I would suggest the actual error message to be passed in SDK instead of fixed text as by now done here. 😉

About Dropbox API Support & Feedback

Node avatar for Dropbox API Support & Feedback

Find help with the Dropbox API from other developers.

5,877 PostsLatest Activity: 5 hours ago
325 Following

If you need more help you can view your support options (expected response time for an email or ticket is 24 hours), or contact us on X or Facebook.

For more info on available support options for your Dropbox plan, see this article.

If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!