Greg-DB Dropbox Community Moderator

@"FilipRachunek" This is a bug in the Java SDK. This is still open with engineering, but I don't have an update on it yet. I'll follow up here once I do.

It sounds like you actually retrieved an access token from two places: * your app's page on the App Console, using the "Generate" button * the API v2 Explorer, using the "Get Token" button You do not need to do both however. If you just need an access token for your own account and app, you can just use the first option.…

@"pcooperuk" Thanks for the feedback! I can't speak to why Dropbox hasn't chosen to implement any particular feature on the API, but I'll add your feedback to the feature request. 

Thanks for following up. I'm sorry to hear the existing app didn't seem to work. We'll be happy to look into whatever issues you are or were running in to with the existing app if you'd like. In that case, you can open an API ticket here. Otherwise feel free to use your new app of course.

We don't have a sample for PHP in particular, but I recommend reading the Getting Started guide to get familiar with the Dropbox API, and the OAuth Guide for information on how the authorization system works. If you're calling the HTTPS endpoints directly, for the pieces of functionality you mentioned, you'd want to use: *…

The "Error loading app info" can occur if you attempt to request scopes that are not enabled for your app. It sounds like your app does not have team scopes enabled, so you should not request them. You should use withPathRoot to access the team space though. Can you check that you are doing so, and that your "xxxxxx" value…

The /2/files/search endpoint is deprecated and is being retired in favor of the /2/files/search_v2 endpoint (and /2/files/search/continue_v2 for the pagination of results following /2/files/search_v2). Each of these endpoints correspond to one method in each official SDK. In the JavaScript SDK, that's: *…

@"MARPAT" Thanks for the feedback!

To clarify, are you able to reliably reproduce this issue every time you try? It appears this occurred due to a network issue, so I wouldn't expect that to re-occur each time. (If it does though, let us know as that may indicate a bug in the SDK.) Anyway, it looks like a network timeout caused the client and server to get…

Yes, you should store and re-use the refresh token repeatedly. (Dropbox refresh tokens are not short-lived; they do not expire by themselves, though they can be revoked on demand by the user or app.)

@"charlesfish" We don't currently have anything like that, but I'll bring this up with the team to see if we can formalize some sort of system/notification for this. I can't promise if or when that might be implemented though. Thanks for the note!

API apps are frozen one they reach 500 linked users, or two weeks after reaching 50 linked users, whichever comes first. In order to unfreeze an app, you'll need to apply for and receive production for it. You can find more information on this process here. The App Console also requires that the app be tested and so have…

It sounds like you may be interested in using the /2/files/get_temporary_link endpoint. Check out the documentation there for more information. By the way, that's a link to the documentation for the HTTPS endpoints themselves, but we recommend using one of the official SDKs if possible. Those have corresponding native…

I see you're using a 'client' object defined in your 'getList' method. It's possible this client object is going out of scope before the request finishes, which could cause this kind of failure. (API calls are made asynchronously, as they require network calls.) You should keep that client object in scope instead. For…

@"dsmurfin" Thanks for the note! I don't have an update on this yet. I'll check in with the team.

@"jkniazi" Yes, the information in my previous reply on this thread is still accurate. Please refer to that for more information.

The Dropbox Saver works by having the Dropbox servers access a URL to retrieve the linked file content and save it to the user's Dropbox account. That being the case, it needs to be supplied with a publicly accessible URL for the file. Exactly where the file is hosted doesn't matter as long as it is publicly accessible on…

I can't provide API support by remote desktop, phone, or chat, but I'll be happy to help here. I could use some more information about the issue you're seeing though. Can you share the following? * the steps to reproduce the issue, including relevant code snippet(s), but don't include any access token(s) * the full text of…

The updated Dropbox app authorization flow does now use short-lived access tokens and refresh tokens. In either implementation, the initial authorization does require some manual user interaction. With the new functionality, if you need long-term access (that is, longer than four hours) without further manual interaction…

I've confirmed with the team that this switch back to DigiCert High Assurance EV Root CA is not permanent. As our current certificates expire, we will be moving away from using EV certificates. Please update your trust store as mentioned, and do so by August. (The current certificate using DigiCert High Assurance EV Root…

Thanks for the detailed writeup! I can't make any promises myself as to if/when we might work on this, but I'm bringing this up with the team.

I see, thanks! That's helpful context. 

The Dropbox API servers at api.dropboxapi.com are currently responding and working for me in my testing now. Can you share more information about the issue you're seeing? The steps to reproduce the issue, including the relevant code snippets, would be helpful.

@"ccle-operations" If you are unable to migrate your app's code by the retirement date, please feel free to open an API ticket here and include the app key(s) for your app(s) and let us know how long of an extension you would need. I can't make any promises myself, but the team will review the request to see if we can…

Thanks for the detailed writeup! That's very helpful. I'll ask the team to update the implementation to treat an empty scope parameter the same way as a missing scope parameter.

Thanks for the additional information and feedback. Also, when you say you "do not control their application access", do you mean that they each register their own Dropbox API app and that you do not know the relevant app key for each one? I ask because any extensions would be granted by app key, so that would complicate…

The API doesn't offer a way to convert long-lived access tokens to refresh tokens. Creating new long-lived access tokens is now considered deprecated, but we don't currently have a plan to disable existing long-lived access tokens. (If that changes, we will of course announce that ahead of time.) That being the case, you…

@"Thomas_" Thanks for following up. It sounds like there may still be some accounts seeing a long latency with this functionality. Could you open an API ticket here with the affected account ID(s) so we can check on them? Thanks in advance! 

Can you try again and let me know if you're still seeing the issue? Thanks in advance! 

We've switched content.dropboxapi.com back to using DigiCert High Assurance EV Root CA. Please let us know if you're still seeing any issues. @"4mooreben" Yes, that's correct, this switch should not be considered permanent. We recommend updating the trust store, to trust both roots if possible. I'll ask the team for some…