The Box Postman Collection uses an Access Token to authenticate API requests on your behalf. Access tokens expire after 1 hour and must be refreshed.Documentation Index
Fetch the complete documentation index at: https://developer.box.com/llms.txt
Use this file to discover all available pages before exploring further.
Using a refresh token
If you configured a Box App in of the Postman quickstart, your Box environment should contain a validclient_id and
client_secret. Together with the refresh_token, these can be used to
obtain a new access_token.
![Postmanの [Send] ボタン](https://mintcdn.com/box/ytoibDxiRFNjAO8q/ja/guides/tooling/postman/postman-send-button.png?fit=max&auto=format&n=ytoibDxiRFNjAO8q&q=85&s=9287909356d2176dc0adf2230bc66261)
access_token and
refresh_token, and you can resume making API calls.
Automatic token refresh
The Box Postman Collection can automatically detect an expiredaccess_token
and refresh it before sending your request. This feature is enabled by
default.
To toggle it, edit your Box Postman environment and set the
enable_auto_refresh_access_token variable to true or false.
access_token has expired
before each API call and refreshes it automatically if needed.
Re-authenticating
If yourrefresh_token has expired, typically because the collection hasn’t
been used in over 60 days, you need to re-authenticate by repeating the
.
Before restarting, delete your existing Box Postman environment. Click
the gear icon in the top right, select your environment, and click
Delete.
