Skip to main content

Dropbox App Credentials

Description#

General#

  • Documentation: https://www.dropbox.com/lp/developers/reference/oauth-guide
  • Summary: Dropbox application credentials are a pair of client id/secret generated for each application a user wants to register in its own Dropbox. This pair will allow to create authorization URLs for the application and exchange short-lived access tokens in order to make API calls.
  • IPs allowlist: This feature is not available.
  • Scopes: Dropbox application credentials grant HTTP basic authentication for the corresponding app.

Revoke the secret#

There is no direct information on how to change the client id and secret (called "app key" and "app secret" in Dropbox documentation) or ways to do it from the Application console. The best solution is to contact Dropbox support services.

Check for suspicious activity#

The application console give access to analytics that can be used to check for suspicious activities.

Details for Dropbox app credentials#

  • Category: Data storage

  • Company: Dropbox

  • High recall: False

  • Validity check available: True

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 2

  • Occurrences found for one million commits: 0.74

  • Prefixed: False

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - dropbox- type: ContentWhitelistPreValidator  patterns:  - app

Examples#

- text: >      dropbox blabla  App_key=ykapzwq1r5wyw4i App_secret=h1r909z5a6aqpn2  client_id: ykapzwq1r5wyw4i  client_secret: h1r909z5a6aqpn2