Display Token Redirect URI is not showing

Question

I am authenticating an App, and everything is fine, just a bug that I think is happening in the Dropbox website.

After authenticating the app, it redirects to a URL that we must set, and I am using in my project the following redirect URI that it shows by Drobpox: https://www.dropbox.com/1/oauth2/display_token

Today, I noticed that the site is not showing the code and I would like to know if someone else is happening or a bug to solve for Dropbox.

I could get the code from the URL, but that code is not valid, it is just an example.

Greg-DB · Accepted Answer

The https://www.dropbox.com/1/oauth2/display_token page was only built for the response_type=token flow, not the response_type=code flow.

For example, https://www.dropbox.com/1/oauth2/display_token?code=thiswillnotshow will not show the value, but https://www.dropbox.com/1/oauth2/display_token#access_token=thiswillshow will show the value.

In your screenshot, you're using "?code=", which is not supported by the https://www.dropbox.com/1/oauth2/display_token page. The response_type=token flow is considered deprecated now in favor of the response_type=code flow anyway, so we don't recommend using the response_type=token flow or the https://www.dropbox.com/1/oauth2/display_token page anymore. You should use the response_type=code flow with your own redirect URI on your own server. Please refer to the OAuth Guide and authorization documentation for more information.