This question isn’t duplicate AT ALL. I hope this help others not spending days like I have spent. After almost 4 days I have found out how to get a fresh access token in the google api using OWIN. I’m going to post the solution, but first, I MUST say that what helped me to … Read more
The authentication flow must happen in a visible browsing context, not with a fetch request. In other words: You must navigate the current tab to (or open a new tab at) http://localhost:8000/api/mail/login, the tab will then be redirected to https://accounts.google.com/o/oauth2/v2/auth?… and this page becomes visible. Now the user must interact with that page to choose/confirm … Read more
After some investigations I found, that Google API does not work as expected with your personal account @gmail.com. You should have organization domain account in Google in format you@your_organisation_domain Then, what is also pretty confusing, there is documentation at Google Drive API page, with “Delegate domain-wide authority to your service account” section not mentioned at … Read more
Google has retired their older authentication API. OAuth 2.0 should be used instead. I spent too much time to figure out how to use newer Auth API with older GData API grabbing bits and pieces of information here and there from the Internet. I decided to share all the the details with screenshots to save … Read more
Make sure you have set your cookie-policy to a value other than none in your sign-in button code. For example: function handleAuthClick(event) { gapi.auth.authorize( { client_id: clientId, scope: scopes, immediate: false, cookie_policy: ‘single_host_origin’ }, handleAuthResult); return false; } Note that sign out will not work if you are running from localhost.
There are a couple of different ways in which you can validate the integrity of the ID token on the server side: “Manually” – constantly download Google’s public keys, verify signature and then each and every field, including the iss one; the main advantage (albeit a small one in my opinion) I see here is … Read more
It’s the API key as listed under ‘API Access’, the ‘Simple API Access’ box.
The project is open source. I have not used it. But it’s using a documented algorithm (noted in the RFC listed on the open source project page), and the authenticator implementations support multiple accounts. The actual process is straightforward. The one time code is, essentially, a pseudo random number generator. A random number generator is … Read more
Indeed there’s the possibility to save your credentials object the first time running successfully an OAuth authorization/authentication flow; then to load the credentials object from that file each time running the program for the n-th time, where n >= 2. Here is how I recommend to structure your code: import os, pickle from google_auth_oauthlib.flow import … Read more
The problem is that the user in question doesn’t own the file. After a lot of digging I realised that what you want to do is to remove the permissions for the user on the file in question. The first thing you need to do is run an about.get on the current user: return service.About.Get().Execute(); … Read more