Box Developer Blog
Published in

Box Developer Blog

OAuth 2.0 Redirect URI Changes

New Redirect URI Configuration Section

Today, we released a new feature for OAuth 2.0 applications that allows developers to add multiple redirect URIs to the application configuration.

In addition, to further increase the security of Box Apps, we are now requiring URIs sent via the API to strictly match one of the URIs listed in the configuration tab of the Developer Console. This will be an exact match check, meaning the URIs must be exactly the same. Localhost and loopback address redirect URIs will be permitted redirect to any port, but the scheme, domain, path and query parameters must match one of the configured URIs.

Starting today, any applications created will need to follow these strict matching requirements. Applications created prior to today will have until May 13, 2022 to make changes and avoid a disruption.

For more details, see the guide or API reference pages.

We hope you enjoy this new feature, and please feel free to reach out to us on the developer forum for support, or via Box Pulse to make suggestions on how to improve the feature.

--

--

--

News and stories for working with the Box APIs

Recommended from Medium

EMonitor — Environment Monitoring Device

Get notified by e-mail when your website is down using Monika: A guide to SMTP notification channel

Chaos is the New Normal

Create can size sit.

Learn Kotlin Programming Language

An honest review of Insomnia Designer and Insomnia Core

Starting of my python journey .

Introducing the Ethereum Development Environment: Part 1

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Alex Novotny

Alex Novotny

I’m a Box Developer Advocate, helping others learn how to maximize their investment through Box Platform.

More from Medium

Common GraphQL misconceptions demystified

Hyperion — A PostgreSQL tool to dynamically test your queries

Application Framework

Storage in database