How do I set up the redirect URI and Dropbox OAuth for an HTTP request in Azure Logic Apps?
I have been struggling to set up a URI for my Logic App. I think I am suffering from information overload trying to wade through all of the applicable information.
I am trying to set up Dropbox offline access with a refresh token. I have asked for help in the Dropbox developers forum but I keep getting told to reference the documentation and that they can't help with 3rd party apps so they won't answer specific questions regarding integration with Azure Logic Apps.
My first issue is how to find the or make the redirect URI so the Logic App can get the response.
For the OAuth do I need to set up a Microsoft Entra application identity for my app? I have an app set up in Dropbox Developer already.
Additional information I Needed After @Skin's Great Answer
The accepted answer got me the refresh code I needed but I still had to figure out how to then use it in my Logic App. Below is what I came up with but if there is a better way of doing it, I would be happy to know it.
I had to set up blob storage in Azure and set any flows to use a system managed identity with the role of "Storage Blob Data Reader".
I then set up a new Logic App with a Recurrence Trigger set to 5 mins (or whatever you want) with the role of "Storage Blob Data Owner".
I added a file to the storage and use that same name throughout, say DBtoken (no extension).
I retrieve the blob metadata and use a condition to check if utcNow() > (LastModified timestamp + 4 hrs).
False does nothing
True then runs an HTTP action using the refresh token to get a new 4hr token:
Then I save the blob back into the storage using the same filename as before - DBtoken (no extension).
Now any Logic Apps I want to have access to the Dropbox API can do so by reading the blob and getting the current access token. I'll describe that here:
- Initialize a boolean variable called Token_Expiry
- Retrieve the blob data from the blob storage
- Insert an Until function that runs until Token_Expiry is = to True
- Add a Condition inside the Until that check if utcNow() <= (Last
- Modified + 4hrs)
- False does nothing
- True has three actions: get blob content, parse json of blob content and sets Token_Expiry to True
- Finally, right after the Until, I initialize a variable to hold the current token and use it in the HTTP Dropbox API actions I have later in the flow.
I'm going to make the assumption that you're wanting to access your own data for your own purposes.
I'll be clear, this is a massive stuff around and I have seen this type of thing before with MYOB and Xero.
What you need to do is go to your application in Dropbox, assign the application the relevant permissions (scope) and add a redirect uri of http://localhost.
Now go to your browser and navigate to ...
https://www.dropbox.com/oauth2/authorize?client_id=<YOUR_CLIENT_ID>&response_type=code&token_access_type=offline&redirect_uri=http://localhost
After you hit enter, check the address bar for the code, it should look like this ...
Now grab that code, go back to LogicApps and add a HTTP operation with the following parameters ...
| Property | Value |
|---|---|
| Method | POST |
| URI | https://api.dropbox.com/oauth2/token |
| Headers | Content-Type = application/x-www-form-urlencoded |
| Body (no line breaks) | code=<TOKEN_FROM_PREVIOUS_STEP> &grant_type=authorization_code&redirect_uri=http://localhost&client_id=<YOUR_CLIENT_ID>&client_secret=<YOUR_CLIENT_SECRET> |
Run that and you should get your access and refresh token, it will look something like this ...
{
"access_token": "sl.Bu3Qlav##########fe_x6BkhklUf3tmw-WfI21GtaU6HsV3BLCG_C8g##############8vrb04I9bhAn7zO-gUKO8dto1aPKZgIylAnIpYSU5EhPOGmCS8",
"token_type": "bearer",
"expires_in": 14400,
"refresh_token": "SCBZcyg1pOQAAAAAA##########Q0tQMUR76pH4exlC7jVxAq_zWIDzZjqhwm",
"scope": "account_info.read files.metadata.read",
"uid": "1116137603",
"account_id": "dbid:AAAfsHJ-bFvD7mPQXzpA"
}
The access token is still short lived (hence the sl. as a prefix) but it will work for you.
Then with that access token, you pass it through as a Bearer token in the HTTP call and hey presto! ... it should work.
With the refresh token, you need to store it off somewhere (like KeyVault) and use it to refresh your access token as needed.
https://dropbox.tech/developers/using-oauth-2-0-with-offline-access
I hope that makes sense.
- Error in Azure logic app workflow when using inline java script action
- Azure Logic App - Create CSV form JSON to send in Email
- Azure Key Vault Disabled public access, how to access it through the portal via internet
- trigger logic app from Azure Service bus in sequance
- Initiate Azure DevOps Release Pipeline from Logic App and Retrieve Environment Variable Output from the pipeline
- xpath expression not working in Logic Apps
- Blocker when adding a blob action in the logic app
- Workflow and API connection provisioning for Standard logic app via Bicep templates/scripts
- Logic App (standard) deployment via DevOps pipeline - kudu service unavailable 503
- Logic Apps copy action gives: The managed identity used with this operation no longer exists. To continue, set up an identity or change the connection
- Logic App PDF File from Sharepoint uploading to Azure Blob is Blank
- Delete files from destination if deleted from source using logic app
- Creating CSV table from Crowdstrike API output
- Convert report JobFailureCode name Succes with Green and Failed with Red
- Logic App Workflow - Flat File Encode error - Invalid Schema
- Copy Folder along with files from Azure Blob to SharePoint
- In Azure Logic Apps, how do I take SQL query results that are JSON and populate an array so I can use the results is a conditional logic?
- Append result in Azure Logic Apps
- Create an API Connection to Azure KeyVault using Service Principal Authentication through ARM template
- How to trigger Azure Logic App when a file is not being uploaded in Blob Storage? When you have replacing previous file?
- How to iterate through a JSON array and read a specific value using Logic App?
- Generate workflow in current devops sprint through logic apps
- Trigger concurrency runtime configuration cannot be removed once specified
- The execution of template action 'Response' is skipped: the client application is not waiting for a response from service
- Using Terraform to deploy Standard Logic App with Liquid Template Maps
- VSCode Logic App func.exe Service Bus Transport Type
- How can I get the UPN of the person who is activating a EntraID Identity Governance Lifecycle Workflow?
- Azure Logic App - xpath for xml with namespace prefix
- How to get data from Azure Workflow Trigger Histories - List
- Can Azure Logic Apps call a stored procedure with multiple select statements?