Questions tagged [oauth-2.0]

1

votes
1

answer
1.6k

Views

Get Access Token From Google Drive API by GoogleAuthUtil in Android

I got a weird problem in using GoogleAuthUtil when accessing the Google Drive API. Following is my code, @Override protected String doInBackground(String... params){ String accountName = params[0]; //String scopes = 'oauth2:profile email'; // This can work ! String scopes = 'oauth2:server:client_id:...
NealXGS
1

votes
1

answer
878

Views

Using OAuth2 with iOS 7

Does anyone know a reliable library I can use to allow OAuth authentication within my iOS7 app? I've been searching for the last 2 days and can't find anything that works.
Choppin Broccoli
1

votes
1

answer
4.1k

Views

How to integrate Google calendar with API in Laravel?

I want to build a Google calendar interface into my web app and use the calendar as storage for events as this also feeds other services. I know I need to get an authorization token and then a refresh token for the app to use the API. I've set up the app on Google and sourced PHP code to help get th...
Ray
1

votes
1

answer
4.5k

Views

How do I use oAuth with Google C# .NET APIs?

I am trying to use the .NET APIs from Google https://code.google.com/p/google-api-dotnet-client/ https://www.nuget.org/packages/Google.Apis.Authentication/ As most of these APIs from Google require an oAuth token for you to fetch any data from them, I am struggling to get over this first hurdle. My...
Warren Buckley
1

votes
0

answer
34

Views

Instagram API, comment response without OAuth

I know there is two kinds of API provided by Instagram which with one of them you can read public comments and images and etc. (Graphql) and with another one you can authorize your app to do some stuff on Instagram on behalf of the authorized user. In our company, we have an internal portal and we w...
Hossein Rashno
1

votes
1

answer
32

Views

MindSphere URL Access

I am trying to access Mindsphere URL with Java Code. I am getting 403 forbidden error while doing it. While I am able to hit other POST URL's for other sites, Mindsphere URL is getting blocked by same piece of Java Code. Can someone help? What am i missing in my Code? restTemplate.exchange(,,*,Times...
Suryan75 Koralli
1

votes
1

answer
25

Views

Social Media OAuth - adding callbacks by code

My question is quite simple, if you want to integrate social media oauth 2.0 you have to add the callbacks to an application for that specific social media platform such as FB/LinkedIn. Afaik, there's no way to add these callbacks through an API of some sort, correct? Meaning that if I want to add s...
Jan Vansteenlandt
1

votes
1

answer
493

Views

Endpoints Google ID JWT, and Golang oauth2: have id_token, need access_token?

I have an app engine app behind endpoints and I'm having trouble following the documentation around adding authentication. My preference is to allow service accounts within the project through, then perform more granular app-side authorization. In my case, most clients will be outside GCP and will b...
user1184088
1

votes
1

answer
2.4k

Views

getting a google id and an access token from a google username/password

I am creating a headless service that I intend to use to access a third party API. To do this, I need to authorize myself with this third party API using a google access token. since I want this service to run in a headless fasion (i.e. no user input), I created a special account with Google and n...
user645402
1

votes
2

answer
598

Views

how to get OAuth 2.0 access token using google service accounts on Android

I am developing an android app where I need to consume Google Cloud Platform REST API. This API is not supported for google android library and I have to call using REST. API needs oauth 2.0 access token for authorization. How can I achieve this on android side?
Shahnaz Khan
1

votes
1

answer
2.5k

Views

Authentication OneDrive Python API

I am trying to use my OneDrive for business with Python. I have installed onedrivesdk and now I am in the process of authenticating my OneDrive the code provided is the following import onedrivesdk redirect_uri = 'http://localhost:8080/' client_secret = 'your_client_secret' client_id='your_client_id...
Mariano
1

votes
1

answer
456

Views

What is the value of JWT Issuer verification?

Given a signed JWT, provided i can successfully obtain an associated public key to verify the signature, what is the value of the issuer verification? It is my understanding that if the token had been issued by a different server, i would have been unable to verify the token with the expected publi...
richzilla
1

votes
2

answer
1.4k

Views

Google Adwords API authentication with OAuth2 in Python with suds

I'm trying to get to grips with Adwords API with OAuth2 authorisation. I can authorise an account to get an authorisation code. I can exchange this code for an OAuth2 access_token/refresh_token. But what next ...? The Google Adwords API SOAP request headers require authToken, developerToken, and u...
Howard Sandford
1

votes
3

answer
1k

Views

Access Token/Authorization Between Microservices

I'm creating an online store REST API that will mainly be used by a mobile app. The plan is for a microservices architecture using the Spring Cloud framework and Spring Cloud OAuth for security. My question is really on best practices for communication between microservices: Should I have each servi...
CJPeckover
1

votes
3

answer
836

Views

How to add client id to Google Drive Client API for Java

I'm just getting started with using the Google Drive REST API in an Android app. (I can't use the Google Drive API for Android because the app needs to share files, and perhaps a few other things, that GDAA doesn't support.) I'm stuck on a couple of points. The first has to do with OAuth2.0 credenti...
Ted Hopp
1

votes
1

answer
75

Views

How to issue and validate jwt from single service endpoint?

I have successfully wired up a token-based authorization system between an Angular front end Web Application and a .Net Core Web API back end (for getting data). Now, I want to consolidate the JWT Logic (generate and validate) into a third Web API .Net Core Project. How do I 'move' the following log...
Jason Smith
1

votes
1

answer
414

Views

How can I use both Microsoft Graph and Office 365 scopes in an OAuth 2 Request?

I'm requesting an OAuth2.0 token from https://login.microsoftonline.com/common/oauth2/v2.0/authorize. I'm requesting these scopes: [ 'https://graph.microsoft.com/User.Read', 'https://graph.microsoft.com/Calendars.Read.Shared', 'offline_access', 'profile', 'email', 'https://outlook.office.com/ma...
Seafish
1

votes
2

answer
916

Views

Access multiple API's with one token in Kong using the OAuth2 plugin with Client Credentials flow

Using Kong API Gateway, I have added the OAuth2 plugin to all API's in the hopes of getting one token to access these API's. When I call: www.example.com/oauth2/token with the required fields: grant type, client id and client secret it forces me to add the API: www.example.com/apiendpoint/oauth2/to...
Eric Semwenda
1

votes
1

answer
274

Views

Creating a Gmail instance with existing credentials using Gmail Java API

A little background: I'm trying to do an API using Clojure that will ask for the user's permission to read his/her emails and then will execute queries to present ordered data. For this I'm trying to use the Gmail Java API with an existing token. Using the documentation available, I was able to make...
Roberto Paredes
1

votes
1

answer
653

Views

Sharepoint Online Web Api Bearer Error 401

I want to get the Web Api work on SPO. I did the example code of https://blogs.msmvps.com/windsor/2017/03/12/walkthrough-building-a-custom-web-api-for-use-with-sharepoint-online/ and it does works fine. Now I want to add a get-Request to SPO, which works on-premise as well. I tried reading a file wi...
Nick Delefski
1

votes
2

answer
355

Views

Can i auth with api with auth structure of laravel?

I want make an API for used on both front-end and admin panel with using Laravel auth structure (with make:auth) and API Authentication (with Passport) for manage all operation of actions. My 'routes/api.php' file; Route::group(['namespace' => 'Admin', 'prefix' => 'admin', 'as' => 'api.admin.'], fun...
FGDeveloper
1

votes
1

answer
147

Views

RingCentral JavaScript SDK (HTTP 400 - Unauthorized for this grant type)

We have tried to connect to the RingCentral token authentication URL in RingCentral by using the JavaScript SDK. https://platform.devtest.ringcentral.com/restapi/oauth/token We are getting Http 400(Bad Request) - Unauthorized for this grant type error. 400 Bad Request { 'error': 'unauthorized_client...
Robert
1

votes
1

answer
439

Views

Spring : Mvc Rest api error=“invalid_grant”, error_description=“Bad credentials” in Spring oauth2 jdbc

I would like to implement security for spring rest api using OAth2 and I'm very new to these concepts. I have implemented this concept using InMemoryAuthentication and it works fine, but I'm trying to do with jdbc authentication. After searching so many tutorials on google I have implemented jdbc au...
sireesha j
1

votes
1

answer
871

Views

OAuthService wrong issuer error (angular-oauth2-oidc)

I'm currently trying to implement azure ad authentication in my angular application. Unfortunately i'm running into some issues. The following code gives me the access token as i'm expecting. To implement it in my api I wanna use OpenIDConnect. export class AppComponent implements OnInit { title = '...
Mikey123
1

votes
1

answer
299

Views

How to manage `state` nonce auth0 authorization code grant flow?

My application consists of a client side html/javascript, a web server, and an API (a 'regular web app', as auth0 calls it). On the Authorization Code Grant doc page on Auth0, it says to create a URL like this: https://ygctest.auth0.com/authorize? audience=YOUR_API_AUDIENCE& scope=YOUR_SCOPE& respon...
user3243135
1

votes
1

answer
101

Views

JSON api response from the linkedin

Using the below URL I have got the profile response from linkedin in the form of XML. this.http.get('https://api.linkedin.com/v1/people/~?oauth2_access_token='+token,{headers: headers}) How can I get the response in JSON format? I have tried with the URL but I'm getting the error. https://api.linked...
raj_tx
1

votes
2

answer
275

Views

Azure Devops Access with Azure AD client credential grant flow

I have successfully authenticated with Azure AD and received an access token. And I have given Azure AD App API permissions to Access Azure DevOps I am using RestSharp Http Client do authenticate var client = new RestClient('https://login.microsoftonline.com/{tenant}/oauth2/token'); var request = n...
user1021779
1

votes
1

answer
907

Views

OAUTH2 Refresh Token

I am little confuse of Refresh Token in OAuth2. Like it says access token limit the time window of 1 hour that hacker can use the user credentials and refresh token is long live token which can be use to recreate the access token. I am confused if someone stole the access token from cookie he can...
Faisal Rehman
1

votes
1

answer
371

Views

Is there a client library that implements Hybrid workflow for Node.js for IdentityServer4?

I know that there is a JavaScript client called oidc-client.js for IdentityServer4, but it implements the Implicit flow. I need something that can implement the Hybrid or Hybrid+PKSE flow. First, is there a client library out there that implements this flow (given that Node.js is at the server lev...
TheDude
1

votes
1

answer
16

Views

Wildfly10 Throws an error while deploying an Oauth server's war file

I am getting this error while deploying an Oauth Server on wildfly10. Do I need to change Application.prperties file?
ShraddhaJ
1

votes
1

answer
1.6k

Views

LinkedIn Refresh Access Token OAuth 1.0\2.0

Has any one tried to refresh the access token (without requiring user input). https://developer.linkedin.com/blog/tips-and-tricks-refreshing-access-token The documentation at the link above makes it seem like this is possible only for OAuth 1.0.
Shmalex
1

votes
1

answer
6.4k

Views

What is the purpose of grant_type parameter in OAuth 2 Authentication

I am using OAuth 2 Authentication in Lumen microframework. Right now i am using the grant_type value is password. It throws unsupported_grant_type, If i am using something different. I want to know the purpose of using grant_type is password
Hariharan
1

votes
1

answer
1k

Views

Oauth auth for Umbraco frontend

I need to implement OAuth2 login on my Umbraco website for the frontend part. I have found a lot of information and tutorials of how to do this on the backoffice part, but none of them describes how to do it in the frontend. I am gonna use an inhouse Oauth2 authorization server. I have the following...
Jesper Plantener
1

votes
2

answer
364

Views

Having issues getting firebase data through Oauth pin-auth session for Nest

Base script: from sanction import Client # client_id & client_secret are omitted but are valid client_pin = input('Enter PIN:') access_token_url = 'https://api.home.nest.com/oauth2/access_token' c = Client( token_endpoint=access_token_url, client_id=client_id, client_secret=client_secret) c.request_...
Enigma
1

votes
1

answer
1.4k

Views

grant_type in Spring-Security-OAuth2

I am new to OAuth2 concept.I ahve to implement this in my application. This application provides REST APIs. I follwed some tutorial ,done some research and kind of implemented it in working state in my application. But while doing some search I read about different type of grant_type in OAuth2. I tr...
Anita
1

votes
1

answer
803

Views

Server side Access token from one time code coming from Android Application

How do I get an access token when I've got an one time code coming from an Android application? More specifically: On the Google API Console when creating config for an Android app there is not client secret. What do you set the client secret to when doing this? Some have suggested that I leave this...
Michael Wiles
1

votes
1

answer
1.7k

Views

Google's oauth endpoint is returning a 'Bad Request'… but why?

After a lot of time wasted googling for the possible reasons for a 'Bad Request' when requesting for a token at https://accounts.google.com/o/oauth2/token, I decided to ask why this code can't obtain nothing but a 'bad request' response from the server... String url = 'https://accounts.google.com/o/...
JPCF
1

votes
1

answer
637

Views

Scribe-java 1.3.3 How to remember a user?

I am using scribe 1.3.3 for OAuth2 in my android application. I have gotten the full flow to work correctly with google, I can request user information and everything works fine. I'm curious as to how to keep the user logged in if they close the app. Currently every time I start up the app I prompt...
user1751547
1

votes
2

answer
537

Views

How to call AtTask REST API with Federated SSO (SAML2)

I have integrated Attask with SAML using Third party IDP (ADFS). I have my web application which also supports SAML and configured with same IDP. I am able to login using IDP in both application (Attask and My app) and able to access Attask application from my app and vice-verca. Now I have to crea...
ManojP
1

votes
1

answer
2.1k

Views

How to do Application to application (server to server) authentication, OAuth 2.0, Web API 2.0

I'm on a project that has 2 separate ASP.NET MVC 5 Applications. One uses the other as a service. Basically, one of the applications is a Profile Service that has all the profile information of users so that, in the future, other applications can use that service and users don't have to set up multi...
Tamer Rifai