Questions tagged [oauth-2.0]

1

votes
1

answer
1.7k

Views

Oauth2 log into google account Android

I try to handle access keys to users, who wants to get some data from their google analytics account. The code worked perfectly for 1 day, but now i cant access the google account any more. It seems to me like the Activity cant get the token anymore. Perhaps it should be renewed, something definitel...
Friis1978
1

votes
1

answer
1.6k

Views

Problems Integrating iOS project with Box SDK

I am having problems with the instructions to integrate the Box iOS SDK with my project. I have followed the instructions on https://github.com/box/box-ios-sdk-v2 and I have gotten my app to successfully authenticate. Now, I am stuck in the Making API Calls section on the first part (Get a folder'...
user2797422
1

votes
0

answer
36

Views

OAuth 2.0 and Open ID Connect: Standard way to integrate multiple Open ID Connect endpoints without dedicated links/buttons

We are implementing OAuth to our existing multi-tenant web app. Many of our tenants have Open ID Connect endpoints, which we need to integrate. Most of the examples on the internet shows having a dedicated button for each OAuth/Open ID Connect provider (Google, Facebook, et.). We definitely don't...
MyRealm
1

votes
0

answer
60

Views

oauth2 implementation php codeigniter

I am working on web application using oauth2 for user authentication. I have set header as Authorization bearer But i am getting error {'error':'invalid_request', 'error_description':'Only one method may be used to authenticate at a time (Auth header, GET or POST)'} I have tried code as below Javsc...
AppS
1

votes
1

answer
145

Views

Laravel 5.6 error on create token: There was an error while creating the signature: error:04075070:rsa routines:RSA_sign:digest too big for rsa key

When I try to create a token for an authenticated user via $user->createToken('Somename')->accessToken; it returns 'There was an error while creating the signature: error:04075070:rsa routines:RSA_sign:digest too big for rsa key', so after search on google it seems to be a problem with openssl lib,...
juanccq
1

votes
1

answer
141

Views

How to implement oAuth2 on WordPress based website?

I own a WordPress based website and trying to write an Android app for it. I already tried to check out WordPress's open source Android app, but couldn't figure it out. I want to implement oAuth-2.0 login for the app. Does WordPress have build-in support for oAuth-2.0? How can I implement it on clie...
ehsan khormali
1

votes
2

answer
2.5k

Views

Google+ OAuth2 on iPhone how to logout

I am writing an APP where students can login using goole+. I followed GOOGLE Developer and successfully logged in and obtained the user profile information. Now I am trying to logout. I deleted the Application, signed out of all google accounts on safari , iPhone , cleared cookies, history logged i...
ila
1

votes
0

answer
442

Views

Unhandled Promise rejection: loginUrl must use Http. Also check property requireHttps

I am trying to redirect app to my login page via auth-2 service. Below is my code. private _router: Router, private _http: Http, private oauthService: OAuthService) { this.oauthService.loginUrl = 'http://172.30.10.207:8080/uaa/oauth/authorize'; this.oauthService.redirectUri = 'http://localhost:4200/...
Bhagyashree
1

votes
1

answer
677

Views

How proper configure Spring Security OAuth 2.0 Client Credentials?

I have application with standard form authentication (username and password). I try to configure OAuth2 in my application. I have configuration in xml. I have a problem that client id and client secret have to be one of users login and password (for example if I have user abc123 with password qwerty...
kuba44
1

votes
0

answer
135

Views

LinkedIn API needs 5 seconds of delay between auth and request

I wrote an oAuth2 process with LinkedIn, and after I get the authentication token, if I make a request I get the following response: Then token used in this request has been revoked by the user. However, if I just do: await new Promise(resolve => setTimeout(resolve, 5000)) and then make the request,...
Amit
1

votes
1

answer
216

Views

Google APIs - removing auth scope

I'm changing scopes in an app for Google Classroom. I remove from courses .readonly and added student listing var SCOPES = 'https://www.googleapis.com/auth/classroom.courses https://www.googleapis.com/auth/classroom.coursework.students'; I get this error when requesting students even after logging o...
Growler
1

votes
0

answer
409

Views

Third party access protocol for whatsapp for business

Is whatsapp for business using oauth protocol for user access token for third party access?
Prateek Gupta
1

votes
1

answer
52

Views

How do I get HTML back from a cURL in PHP vs. an actual link?

I am new to cURL. When I make the following GET in jquery/ajax, I receive HTML in the response that creates a popup login window (oauth2). When I use the following code in a backend php script to hit the same endpoint, I get back a clickable link...which, when clicked takes you to a login page. What...
11teenth
1

votes
0

answer
27

Views

Authenticate and get to Reddit resource

I wanted to call https://oauth.reddit.com/api/v1/me endpoint, so I created follwing REST controller: @RestController @RequestMapping('/reddit') public class RedditController { @Autowired private OAuth2RestTemplate redditRestTemplate; @Value('${secured.service.url:https://oauth.reddit.com/api/v1/me}'...
AndrewX
1

votes
1

answer
149

Views

How to use authenticate a user for google sheets api on a remote server using Node.js?

I am working with Google sheets and node.js and I am able to authorize a user locally and get auth data using cmd using this tutorial https://developers.google.com/sheets/api/quickstart/nodejs but cant authorize it on a remote server like Heroku so I have found an example https://codelabs.developers...
Suyash Doneria
1

votes
0

answer
78

Views

Which grant type for oauth 2 token in java for single web application[BOT with email,OTP AND web application with username,password]

I have my web application where we are migrating to oauth2 protected API's from spring security. For web application we used oauth2 (grant type password) implementation and it worked. (With username , password entered and oauth token issued) But at the same time we have another part of application r...
Ash
1

votes
1

answer
214

Views

Gsutil - Installing and configuring on a remote server. How to automate it?

I have currently installed gsutil on a server to access my GCS buckets. I followed the instructions under the section 'How to convert gsutil to use OAuth 2.0' from https://cloud.google.com/storage/docs/gsutil_install The intermediate steps in the instructions require that a URL is copy pasted in the...
activelearner
1

votes
0

answer
72

Views

Request works in postman not IONIC

I'm developing an ionic app with a back-end with Java spring Boot with Spring security on it. When I tried to get a token with postman everything went well but in ionic, I got a 401 HTTP code. I have no cors problem, I have disabled it in my browser. Here is the code from Ionic: login() { return new...
Selwyn Joymangul
1

votes
1

answer
28

Views

implementing other grants when only authorization code is available

I am creating web and mobile apps that reimplement an existing desktop app via the desktop apps publicly available API. This API only provides the Authorization Code Grant path for authentication, which would require me to either: somehow securely store the client secret in the app Implement PKCE &...
Somkun
1

votes
1

answer
383

Views

Return OAuth Access Token in header or POST

I have an Spring OAuth2 server set up and it's working fine when the clients authenticate. The issue is that when the client is the browser the access token is show on the redirect URL on the address bar and the browser remembers it. Is there a way for the Authentication server to send back the acc...
FourtyTwo
1

votes
1

answer
1.8k

Views

OAuth JWT access token expiration depending on type of client

I created a JWT token implementation based on Taiseer's tutorial. The following code was added to my Owin startup class: OAuthAuthorizationServerOptions OAuthServerOptions = new OAuthAuthorizationServerOptions() { AllowInsecureHttp = HttpContext.Current.IsDebuggingEnabled, TokenEndpointPath = new Pa...
jao
1

votes
2

answer
3.9k

Views

SalesForce API: OAuth authorization error 1800

I am brand new to SalesForce development, and want to explore the API and its capabilities. I have created a new Developer Edition account. I have not yet tried to access the API programmatically, but I am trying (unsuccessfully) to access it via both the Workbench ( https://workbench.developerforce...
Eugene Osovetsky
1

votes
1

answer
963

Views

OAuth-2.0 resource servers token validation in distributed environment

I'm going to make a REST web service with many resource servers (implemented in different programming languages) and one authorization server. My question is about token validation in the resource servers. Let's say that a resource server cannot connect to the database and check the token info there...
Arūnas Smaliukas
1

votes
1

answer
3.1k

Views

How to attach payload into RestSharp request?

I can not put a workload in requests with RestSharp. Can anyone help me? I tested request.AddBody(payload) -> payload is a serialized object in json but, doesn't work for me :/ :/ Thanks a lot :D EDIT - public override string Post(string url, object payload) { RestRequest request = new RestRequest(...
Horácio Filho
1

votes
1

answer
0

Views

Stocktwits API - get access token from script without user interaction

Is there a possibility to retrieve access token just from script in aws lambda without user interaction in the next way? => url = f'https://{user}:{password}@api.stocktwits.com/api/2/oauth/authorize?client_id={client_id}&response_type=token&redirect_uri={redirect_uri}&scope=publish_messages' respon...
1

votes
1

answer
553

Views

Azure AD token endpoint doesn't return an access_token (just an id_token and a refresh_token)

I'm using Xamarin.Auth for authenticating users against Google and Azure AD in a Xamarin Forms based mobile app. While everything works as expected with Google, I'm unable to get an access_token with Azure AD: Authorize works as expected providing code and state Token returns an id_token and a refre...
manuel
1

votes
1

answer
541

Views

How can I use Firebase custom auth with an openID provider?

I currently have a web project for a game and I want users to be able to login to share stuff, that is currently done (and neatly working) using google's firebase authentication. But I want people to be able to be authenticated via Steam (using Oauth2) the firebase reference/API (https://firebase.go...
Cerbion
1

votes
2

answer
4.1k

Views

SPA and refresh token

I am creating Angular single page application and I want to use JWT (JSON web tokens) with OAUTH 2.0. I was reading best practices and found OAuth 0 article which should help with it https://auth0.com/docs/api-auth/which-oauth-flow-to-use. My app should be able to login user and keep him logged for...
Andzej Maciusovic
1

votes
1

answer
860

Views

Authorization request header OAuth 2.0

I am trying to implement OAuth 2.0 on a project I am working on. I am able to authenicate with the authenication server however I am having problems with the resource server. We are using a MAC token(spec). You can see in 3.1 of the spec that I need to send a Authorization request header which inclu...
jiduvah
1

votes
1

answer
516

Views

Get WebAuthenticationBroker.GetCurrentApplicationCallbackUri outside the Runtime

We can get the current application callback URI by using the WebAuthenticationBroker.GetCurrentApplicationCallbackUri method on Windows 8.1 Store Apps. Is there any way to get this application callback URI outside the runtime? I need the application callback URI to register my client to the OAuth...
tugberk
1

votes
2

answer
1.3k

Views

How to authenticate box.net programmatically?

I am using OAuth 2.0 protocol to authenticate. I am not getting any way to obtain access token programmatically without any user interaction(no UI at all). The purpose is to list all files of all users under enterprise Box.Net account. The flow I am expecting is like service account of google Drive.
1

votes
3

answer
2.6k

Views

OAuth2 Resource Owner Password Grant via API

I am currently building an API which requires OAuth2, but cannot find a library to use that will handle the single sign on in a native mobile app via RESTful API only. Most I've found only have a web popup, which has been vetoed for this project. B2C, which is currently functioning, is not capable o...
Rob
1

votes
1

answer
475

Views

Linkedin authentication giving invalid redirect_uri

I'm using linkedin authentication api to login my website users. First of all I'm redirecting to the following url : https://www.linkedin.com/oauth/v2/authorization?' \ 'response_type=code' \ '&client_id=*****' \ '&redirect_uri=http%3A%2F%2F127.0.0.1%3A8000%2Faccounts%2Flinkedin%2Fcallback%3Fnext%3D...
mohammad
1

votes
1

answer
1.3k

Views

Passing through URL parameters through Passport OAuth flow

I currently have Google OAuth2 implemented in node.js using the excellent Passport framework, but I am finding it difficult to pass through URL parameters in the workflow. What I'd like to do for example, would be to have a url like /analysis?id=1234 and then to be able to load that specific analys...
koend
1

votes
0

answer
428

Views

How to fetch oauth2 access token using axios

I have developed a spring-boot application and configured it with oauth2, i'm using reactjs at front-end and using axios to make rest calls, does anybody here know how to fetch access tokens using axios.
Manikanta B
1

votes
1

answer
69

Views

Linkedin Api Saved Jobs

is there a way to retrieve my linkedin saved jobs from the API without registering for the partnership program? (And if not, can I do it by registering?)
Dani
1

votes
2

answer
2.1k

Views

Google task API authentication issue ruby

I am having the problem to authenticate a user for google tasks. At first it authenticates the user and do things perfect. But in the second trip it throws an error. Signet::AuthorizationError - Authorization failed. Server message: { 'error' : 'invalid_grant' }: following is the code: def api_clie...
Jamal Abdul Nasir
1

votes
1

answer
44

Views

How to force BOX app user access token to get expire within 60 minutes

I created BOX app user access token for a user which will get expire after 60 minutes using JWT/OAuth2. I then created new access token for the same user within 60 minutes. How can I force the old access token to expire? Otherwise both access tokens are valid.
bvibes
1

votes
0

answer
18

Views

Password derived key (i.e PBKDF2) + oAuth2

I have an application that needs to store secrets on behalf of the user. These secrets should be stored securely, but need to be decryptable when the user is present. Ordinarily I would turn to password based keys (i.e. PBKDF2) to derive the key, however I also have to provide oAuth2 sign in capab...
Eugene Burd
1

votes
1

answer
74

Views

Google app consent screen : Image always invalid

I am in the process of integrating Google's authentification API for my website. I have create a google API app, and everything is working fine except setting up the logo for the consent screen at https://console.developers.google.com I have tried different images with different sizes and format. Th...
Hugo