Greg-DB Dropbox Community Moderator

No, the Dropbox API does not offer a way to retrieve shared links with that hostname. (Also, note that while it may technically work, using 'dl.dropbox.com' like that is not officially supported/documented. The officially supported modifications are documented here.) If your use case would be met with temporary links…

The Dropbox API does have a rate limiting system that applies to all account types, but we don't have specific rate numbers documented for that, and we cannot increase the limits for any particular app, user, or team. Apps should be written to handle these rate limit responses automatically. Also note that not all…

The sharing_add_folder_member method should either return a result, or raise an exception. I can't say based on this snippet what is happening with your code execution flow, so I recommend stepping through with a debugger to see where it is hanging or infinitely looping. Let me know if something is broken in the Dropbox…

Yes, the rate limiting system works per-user account, and that is one reason that having all of your end-users connect to a single Dropbox account is not recommended, as all of their traffic will be attributed to that one account. And yes, the API was designed with the intention that each user would each connect their own…

That "version" field in the documentation for any particular API endpoint is referring to the endpoint version number. (This is distinct from the API version number, which is "2" for the current version of the API itself.) The endpoint version is included at the end of the API route. When the endpoint is still on version…

@"Ivan_" The 127.0.0.1:52475 address seen in your screenshot is the address of a local server that should be used to programmatically receive the authorization code. Please refer to the examples as written to see how that is extracted: *…

@"trithanhnguyen" Yes, as Здравко indicated, it sounds like you're looking for the contents of your "team space", but note that by default, API calls operate in the "member folder" of the connected account, not the "team space", so you won't see the contents of your team space when making API calls by default. You can…

Dropbox does not have SCIM functionality publicly available. If you want to use Azure AD, please refer to this help center article, or for Google Cloud Identity refer to this help center article. If you're interested in developing your own integration, please refer to the team endpoints documentation here.

Thanks for the report. I've asked the team to fix that up. By the way, note that Dropbox does not officially support accessing 'dl.dropboxusercontent.com' directly like that. You should use 'www.dropbox.com' with the 'dl' or 'raw' parameter and follow redirects, as shown in this help center article.

It's not possible to get a refresh token without using the OAuth flow, but refresh tokens don't expire, so you only need to process the OAuth flow once per Dropbox account. You can find more information in the OAuth Guide and authorization documentation. There's also an example here that may be helpful.

If you're referring to using sharing_add_folder_member to add a member to a shared folder, there is a AddFolderMemberError.rate_limit that applies per 24 hours. Please wait 24 hours and try again. Otherwise, regarding any particular error you're seeing regarding files/folders on the Dropbox web site, please reach out to…

The sample in my post happens to use curl on the command line, but exactly what network client you use is up to you, depending on your use case, environment, etc. I can't offer help with the third party network clients themselves, but looking at that code, it seems you're missing the rest of the parameters for the…

I have a post here showing the basic flow of getting and using a refresh token to retrieve new short-lived access tokens on demand which may be helpful.

@"Ivan_" Здравко is correct, to receive the authorization code programmatically, you should use a redirect URI. You can find more information on how this process works in the OAuth Guide and authorization documentation. Also note that it is not possible to fully automate the OAuth process where the user chooses to…

@"RogueBotanist" As Здравко noted, the code you shared is written to move the folder itself. If you want to move a specific file, you need to set the from_path parameter to be the whole path, including file name, to the file that you want to move. Likewise, the to_path parameter needs to the be whole path, including file…

I see you're trying to call the /2/auth/token/from_oauth1 endpoint. If this is a new integration, you should not be using that endpoint. This endpoint is only meant for use if you have pre-existing OAuth 1 access tokens, and the oauth1_token and oauth1_token_secret parameters would refer to the old OAuth1 access token key…

I can't see for sure with the redaction in your screenshot, but it seems like you're attempting to access a folder in your "team space". By default, API calls, such as GetMetadataAsync, operate in the "member folder" of the connected account, not the "team space", so the contents of the team space won't be found by…

@"_shintaku_" You're not guaranteed to get everything back in one call to files_list_folder, so as Здравко indicated, make sure you implement files_list_folder_continue in addition to files_list_folder as documented. Also, here's an example of how you can check the type of a Metadata object.

@"brian q." As Здравко, please check the source is still available at the time of the save call, as that would be typical cause of an error like that. Otherwise, feel free to open an API ticket with some additional details if you'd like us to look into it specifically. In particular, the account IDs for the source account…

Yes, the Dropbox API does offer the ability to retrieve the event log for a Dropbox team programmatically, via the /2/team_log/get_events[/continue] endpoints. You can find the documentation here: * https://www.dropbox.com/developers/documentation/http/teams#team_log-get_events *…

@"novotny" Yes, the expiration is only about the access token. The refresh token doesn't expire (though can be revoked on demand). If the expiration has passed, the client will use the refresh token to get a new access token automatically.

@"novotny" You can call refreshAccessToken if you want, but that is actually not necessary. The client will automatically handle this procedure for you whenever needed. (That is, it will automatically perform the refresh to get and use a new short-lived access token when the current one is expired, without you having to…

@"novotny" Regarding your initial authorization question, it is not possible to fully automate the OAuth process where the user chooses to authorize the app and the app then receives the resulting access token and optional refresh token. This needs to be done manually by the user at least once. If your app needs to…

@"1575475" Dropbox does not offer a way to check or sync with its own clock. I'd suggest you use whatever standard time synchronization service is available to you on your platform (e.g., using NTP). You can find the documentation for the date format that the Dropbox API uses here, and a guide about Detecting Changes here.

This doesn't appear to be something Dropbox itself is doing, but note that users can move app folders, e.g., via the web site or any Dropbox client. So, I recommend having the affected user check their account. If they didn't intentionally do it themselves, it's possible something connected to their account made it, e.g.,…

A 'missing_scope' error indicates that while the app is permitted to use that scope, the particular access token you're using to make the API call does not have that scope granted. Also, be aware that just adding a scope to your app via the App Console does not retroactively grant that scope to existing access tokens. That…

@"Здравко" Thanks for the detailed post! It looks like the issue is that the shared folder contains a nested shared folder, and so cannot be unshared. You would need to move the nested shared folder out first before you can unshare the parent shared folder. I'll ask the team to see if we can improve the error reporting in…

The API does have a rate limiting system, but if it needs to reject a call for rate limiting, it would return a 429, not a 409. 1. If it appears the API is incorrectly returning this error, please share the request and response, showing both headers and bodies, so we can take a look. Be sure to redact the access token…

The documentation doesn't indicate a specific sort order, so I can't guarantee if/how it will be sorted. I'll ask the team to document/guarantee a particular order, but I can't promise if/when that would be done. That being the case, I recommend applying whatever sorting you need client-side to be sure.

Apologies this isn't better documented; I'll ask the team to fix that up. When you get an async_job_id back from /2/sharing/remove_folder_member, you should call /2/sharing/check_job_status to see the result of the operation, e.g., if it completed successfully or if it failed and if so why. Please give that a try and let…