oauth | 易学教程

IdentityServer Facebook Auth changes subject id / is not the facebook id

阅读更多关于 IdentityServer Facebook Auth changes subject id / is not the facebook id

问题 I enabled the IdentityServer to authenticate with Facebook with the implicit flow. now when I get authenticated i get an id value as subject. like 502967fe0125ce3ff75050ef7b83fd68 I used it as a user id to store user related data. But from time to time it seems like the content of the subject changes and I get a different id. Am I missunderstanding the concept of the Subject . Is it expected that it is chagning ? Shouldn't be the subject id constant? What information should I use to store

Users can Upload video on single Youtube Channel with or without authentication

阅读更多关于 Users can Upload video on single Youtube Channel with or without authentication

问题 I am making a program that will upload video to my youtube channel by any user. But it generates error. My code is as follows:- require_once 'Zend/Loader.php'; Zend_Loader::loadClass('Zend_Gdata_YouTube'); Zend_Loader::loadClass('Zend_Gdata_AuthSub'); Zend_Loader::loadClass('Zend_Gdata_App_Exception'); Zend_Loader::loadClass('Zend_Gdata_ClientLogin'); $authenticationURL= 'https://www.google.com/accounts/ClientLogin'; $client = ""; $email = 'theprofessional1992@gmail.com'; $passwd = '*********

OAuth consent screen not showing

阅读更多关于 OAuth consent screen not showing

问题 Recently implemented Google sign-in in my local dev. Everything works fine, except when I choose one of my Google accounts to log in, the consent screen does not show up. It does get authorized, as I can see my website in Apps connected to your account section of My Account. I have already configured OAuth consent screen under Credentials section of APIs & Services console. Not sure why it's not showing up? I tried sending approval_prompt=force but it had no effect. Also tried prompt=select

User based permissions/scopes in Spring oAuth2

阅读更多关于 User based permissions/scopes in Spring oAuth2

问题 In my current setup I have standalone spring oAuth2 server, standalone resource server and angularJs app with reverse proxy. On the authentication server side I have register 2 clients (web-app and internal client for service communication). I correctly receive client scopes and Users roles. Question 1 I need different permission (e.g. scopes) per user not client (web-app, mobile,...) I tried providing my own ClientsDetailService where I would build ClientDetails for each user, but only thing

Re-Generate Access Token From Refresh Token

阅读更多关于 Re-Generate Access Token From Refresh Token

问题 I have a refresh token that got generated for office365 login. I generated it using the following set of permissions openid offline_access Calendars.ReadWrite.Shared profile email https://graph.microsoft.com/User.Read Now I want to generate an access token from the refresh token with some different set of permissions like following Group.Create, Group.ReadWrite.All, Directory.ReadWrite.All Is it possible to have an access token from refresh token with some different set of permissions? Any

Does Google Apps Email Migration API support 2 legged oAuth?

阅读更多关于 Does Google Apps Email Migration API support 2 legged oAuth?

问题 I am trying to develop winform application using Google Apps Email migration API. I also want to use 2 legged oAuth. I have successfully used 2 legged oAuth with contacts data API. To do this i have set the API scope "http(s)://www.google.com/m8/feeds/" on "Manage client API access" page. (http://www.google.com/support/a/bin/answer.py?hl=en&answer=162106) For Email Migration Api I set the scope as "https://apps-apis.google.com/a/feeds/migration". But I am getting "401: UnAuthorized access"

一文带你了解 OAuth2 协议与 Spring Security OAuth2 集成！

阅读更多关于一文带你了解 OAuth2 协议与 Spring Security OAuth2 集成！

OAuth 2.0 允许第三方应用程序访问受限的HTTP资源的授权协议，像平常大家使用 Github 、 Google 账号来登陆其他系统时使用的就是 OAuth 2.0 授权框架，下图就是使用 Github 账号登陆 Coding 系统的授权页面图：类似使用 OAuth 2.0 授权的还有很多，本文将介绍 OAuth 2.0 相关的概念如：角色、授权类型等知识，以下是我整理一张 OAuth 2.0 授权的脑头，希望对大家了解 OAuth 2.0 授权协议有帮助。文章将以脑图中的内容展开 OAuth 2.0 协议同时除了 OAuth 2.0 外，还会配合 Spring Security OAuth2 来搭建 OAuth2客户端，这也是学习 OAuth 2.0 的目的，直接应用到实际项目中，加深对 OAuth 2.0 和 Spring Security 的理解。 OAuth 2.0 角色 OAuth 2.0 中有四种类型的角色分别为：资源Owner 、授权服务、客户端、资源服务，这四个角色负责不同的工作，为了方便理解先给出一张大概的流程图，细节部分后面再分别展开： OAuth 2.0 大概授权流程资源 Owner 资源 Owner可以理解为一个用户，如之前提到使用 Github 登陆 Coding 中的例子中，用户使用GitHub账号登陆Coding

Magento REST api authentication

阅读更多关于 Magento REST api authentication

问题 Is there a way to pass login credentials from code instead of entering credentials everytime in the popup for login authorization? 回答1: You dont require login credentials every time for authorization,you'll get an access token and access secret upon successfull authorization by OAuth,use the later for further calls to the API.Oauth protocol works this way. I guess Magento is using OAuth 1.0/1.0a,so everytime you'll authorize a user you get, oauth_token - the Access Token that provides access

How to use a refresh_token to get a new access_token (using Flask-OAuthLib)?

阅读更多关于 How to use a refresh_token to get a new access_token (using Flask-OAuthLib)?

问题 I'm building a website + backend with the FLask Framework in which I use Flask-OAuthlib to authenticate with google. After authentication, the backend needs to regularly scan the user his Gmail. So currently users can authenticate my app and I store the access_token and the refresh_token . The access_token expires after one hour, so within that one hour I can get the userinfo like so: google = oauthManager.remote_app( 'google', consumer_key='xxxxxxxxx.apps.googleusercontent.com', consumer

How to use a refresh_token to get a new access_token (using Flask-OAuthLib)?

阅读更多关于 How to use a refresh_token to get a new access_token (using Flask-OAuthLib)?