We are aware of the issue with the badge emails resending to everyone, we apologise for the inconvenience - learn more here.

Forum Discussion

af11's avatar
af11
Explorer | Level 4
3 years ago

dropbox.exceptions.AuthError: expired access token

When I run an app I developed, I get an error. dropbox.exceptions.AuthError: AuthError('89ade68e26bd49d592d01bfbfae5659b', AuthError('expired_access_token', None)) What could be wrong with my OAu...
API
  • Greg-DB's avatar
    Greg-DB
    3 years ago

    That's correct, Dropbox is in the process of switching to only issuing short-lived access tokens (and optional refresh tokens) instead of long-lived access tokens. You can find more information on this migration here.

    Apps can still get long-term access by requesting "offline" access though, in which case the app receives a "refresh token" that can be used to retrieve new short-lived access tokens as needed, without further manual user intervention. You can find more information in the OAuth Guide and authorization documentation.

    For reference, while the creation of new long-lived access tokens is now deprecated, we don't currently have a plan to disable existing long-lived access tokens. (If that changes, we will of course announce that ahead of time.) That being the case, you can continue using existing long-lived access token(s) without interruption, if you have any. Also, note though that after the change you won't be able to create new long-lived access tokens.

    While the change began on September 30th 2021, we're releasing it gradually, so you may not have seen your app(s) affected until now. Once it applies to your app, it would apply regardless of the "Access token expiration" setting for your app, and that setting may no longer be available for your app.

     

    You can find an example of getting and setting the refresh token with the Dropbox API v2 Python SDK here.

Здравко's avatar
Здравко
Legendary | Level 20
3 years ago

Hi af11,

At present all access tokens expire after 4 hours. In your example you are relying on access token only without refresh token! If you want prolong your access without additional user interaction, code has to query 'offline' token type and you should care for the 'refresh_token' within result too, aside of 'access_token'. By default the refresh token doesn't expire. Use it in client object initialization too.

About Dropbox API Support & Feedback

Node avatar for Dropbox API Support & Feedback

Find help with the Dropbox API from other developers.

5,877 PostsLatest Activity: 4 hours ago
325 Following

If you need more help you can view your support options (expected response time for an email or ticket is 24 hours), or contact us on X or Facebook.

For more info on available support options for your Dropbox plan, see this article.

If you found the answer to your question in this Community thread, please 'like' the post to say thanks and to let us know it was useful!