Welcome to the new Box Support website. Check out all the details here on what’s changed.

What type of Box App do i need to develop?

New post

Comments

2 comments

  • Murtza

    We have two types of authentication. The first is our OAuth process, which is designed to be used with Managed Users. The second is our JWT auth process, which is designed to be used with App Users. For both of these authentication types, the API key does expire. 

     

     

    0
    Comment actions Permalink
  • steveb

    When you request an auth token, you actually get back two tokens: an access_token that you use to authenticate API calls, and a refresh_token that you can use to get a new set of tokens.

    In addition to processing your events, your endpoint can check for token expiration and request a new token when necessary.

    0
    Comment actions Permalink

Please sign in to leave a comment.