google-oauth

问题 I am a high school teacher writing a Google Apps Script against Google Classroom. I want to create a spreadsheet like view of my students grades that my students can access with their credentials. I have successfully written the code so that I can run it with my privileges by explicitly placing the student's Id in the code. Additionally, I have successfully written the code in Python where I can explicitly set just the two scopes a student needs to access this (and only this) information.

问题 edit : here is a minimal viable project I am trying to get an access and refresh token from Google from an authorization code for the server-side flow. I followed Google's guide here: https://developers.google.com/identity/sign-in/web/server-side-flow. I am using using passport and passport-google-authcode. Here are the routes for the node app: router.get('/auth/google_auth_code', passport.authenticate('google_authcode', { scope: [ 'https://www.googleapis.com/auth/calendar', 'profile', 'https

问题 edit : here is a minimal viable project I am trying to get an access and refresh token from Google from an authorization code for the server-side flow. I followed Google's guide here: https://developers.google.com/identity/sign-in/web/server-side-flow. I am using using passport and passport-google-authcode. Here are the routes for the node app: router.get('/auth/google_auth_code', passport.authenticate('google_authcode', { scope: [ 'https://www.googleapis.com/auth/calendar', 'profile', 'https

问题 I have a Google docs add-on which is programmed to open the sidebar as soon as the document is open. Of course this requires the add-on to be installed and enabled in the document. I see that, since a week, the sidebar auto open feature, which is very useful in our use case, no longer works. In StackDriver logs I see this report : onOpen(): {authMode=LIMITED, source=Document, user=} publi-2.0.72-2017-11-27-18-57 [this is the publication version tag] 2017-11-27T18:02:50.126Z : show menu 2017

问题 I just got the following result when I tried to do oauth2 to googleapi. Only one thing: I couldn't find what is id_token used for in documentation. { "access_token": "xxxx", "token_type": "Bearer", "expires_in": 3600, "id_token": "veryverylongstring", "refresh_token": "abcdefg" } 回答1: id_token is a JSON Web Token (JWT). If you decode it, you'll see it contains multiple assertions, including the ID of the user. See this answer for more details. 回答2: id_token is used in OPEN_ID Connect protocol

问题 We have an HTML5 client accessing a Google Cloud Endpoints backend. We want to offer users a reasonable range of sign-in methods , e.g.: sign-in with an existing OpenID, or alternatively sign-up with an email and password. These seem like basic requirements to us! If there is a better alternative that does not restrict our audience, then we'd consider it. We're encountering two problems: (1) it seems the Endpoints service will only authenticate Google accounts, and (2) we don't know how to

问题 I'm trying to log the user into a Google API from my Flutter app, but can't get it to automatically fetch the token. The closest I got was to see the token string in the auth screen and be asked to copy/paste it back into the app. I suspect it's related to the redirect_uri parameter. I attempted with both oauth2_client and flutter_appauth and it's pretty much the same outcome. When setting up the client, if I use the first redirect_uri provided by Google urn:ietf:wg:oauth:2.0:oob , after

问题 I am using google external login in my application, and I need a functionality that user can upload images from the application to his google drive. In my localhost code the google drive file uploading functionality working fine, after hosting it to IIS user unable to upload the image. I have created an error log file. in that I found the below exception: System.AggregateException: One or more errors occurred. ---> System.NotSupportedException: Failed to launch browser with "https://accounts

问题 I am struggling with a web app I have deployed. When the site permission is available to 'all with the link', as the app is set to 'execute as me', a spreadsheet is properly removed from my drive and a new file created. If I restrict access to certain email addresses, the code no longer works. I tried passing a token using var auth = ScriptApp.getOAuthToken(); var header = { "authorization": "Bearer " + auth }; var params = { 'method':'post', 'headers':header, 'muteHttpExceptions':true}; var

问题 I'm writing a native application that works against a Google API. Upon registering my application, and despite its explicit designation as Native, the Google Developers Console provides me with a client secret. As far as I understand the OAuth 2.0 protocol, native apps should never have a client secret, since they cannot guarantee its secrecy. Is Google mistaken in its implementation of OAuth 2.0? How should I proceed? 回答1: You are correct, the client secret isn't terribly useful in a native