Questions tagged [oauth-2.0]

2

votes
0

answer
449

Views

Cannot access oAuth2 of google apps api

I am getting the following error whenever I try to access credential.refreshToken(): Caused by: com.google.api.client.auth.oauth2.TokenResponseException: 400 Bad Request { 'error' : 'invalid_grant' } at com.google.api.client.auth.oauth2.TokenResponseException.from(TokenResponseException.java:>103) a...
Jyoti
2

votes
0

answer
637

Views

How to call GAS script from GAE (python)

i've an Google Apps Script published as a service, access is set to any user of my domain, execution is set for owner user. in this way it require user authentication when try direct access by url now i wanna call that script from my google app engine project with python i've read a lot and i've sea...
Xander
2

votes
0

answer
40

Views

LinkedIn Web OAuth 2.0 verification requires typing in password even if user is already signed in on browser

Recently, we've been seeing that LinkedIn OAuth doesn't automatically allow users to sign-in automatically (even if they have signed in to LinkedIn with a different browser). Expected Behavior (after signing-in to linkedin.com on same browser): User clicks sign-in button User is redirected to OAuth...
James
2

votes
1

answer
107

Views

Google OAuth2 Error - Installation Failure Message about Security Policy [duplicate]

This question already has an answer here: Getting a random error: policy_enforced on most Google Apps when using OAuth 2 2 answers At around 9:30 PST yesterday (10/2), several users reported errors with the following text: Error: policy_enforced Application: ***** You can email the developer of thi...
ckcheng
2

votes
1

answer
408

Views

Create a google contacts using oauth2 in rails

i've been scratching my head these last few days on that problem so i hope someone can help me because i don't know where to dig. As the title says i'm working on a project using omniauth google oauth2 for authentication. This part works fine since the beginning. Next part is creating contacts in...
elfif
2

votes
1

answer
294

Views

Is SSL certificate needed for Google and Facebook OAuth2 provider in ASP.NET MVC

I read a tutorial how to add support for Google and Facebook OAuth2 provider. One step in this tutorial is setting up SSL in the project. I don't have SSL certificate on my hosting. It is still possible to implement these providers without SSL certificate? I don't want any security warnings on my si...
qub1n
2

votes
0

answer
220

Views

Instagram - access_token constantly expiring

I have an Instagram feed on a site which fetches the latest 25 posts of their IG account. This is done with a basic jsonp request, using the standard api.instagram.com call. Nothing too exciting or ground breaking. While the site's been in development, the access_token expired 3 times. I should have...
Thomas Harding
2

votes
1

answer
572

Views

Google AuthenticatorFactory replacement?

The 'First App' tutorial for Google Calendar API uses AuthenticatorFactory when authenticating the application with Google. According to this link, AuthenticatorFactory was removed from the API on Aug 8, 2011. Can anyone point me in the direction to find the 'new' way to authenticate my applicatio...
aviatorjones
2

votes
0

answer
344

Views

There is anyway use Oauth in firefox extension?

I'm use Oauth2 devloping for browser enxtension,but Oauth is only support for chrome.So there is any way use Oauth2 support dor firefox extension ?
user3797259
2

votes
1

answer
3.2k

Views

Getting user Email Yahoo Oauth (using Scribe-Java API)

Trying to access user profile from Yahoo using Oauth system and for that i am taking help of Scribe-Java API its working fine except one issue whcih i am sure not related to the API i am using In my yahoo profile i have following settings Yahoo! Email --->[email protected] Email--->[email protected]
Umesh Awasthi
2

votes
1

answer
4k

Views

Missing grant type error

I am just trying to learn OAuth. I wrote some code to test it out. when I am submitting a request I am getting { 'error': 'invalid_request', 'error_description': 'Missing grant type' } error in postman. import java.util.Optional; //import static org.assertj.core.api.Assertions.tuple; import java.u...
ThomasKA
2

votes
0

answer
183

Views

Authentication between client mobile app and backend server - Openid Connect

We did some research regarding the best SSO solution for native apps and found out that OpenID connect works great for mobile solutions. We tried an iOS library AppAuth as a client SDK for communicating with OAuth 2.0 and OpenID Connect providers. This solution requires a client to be signed up w...
Rita Azar
2

votes
1

answer
504

Views

Add authentication provider to Azure Mobile Services Nodejs backend

I'm looking for the way to extend Azure Mobile Services authentication providers list. To be able to add Instagram, LinkedIn and other OAuth2 providers. I see an example on how to do it for the .Net back-end using custom LoginProvider class: http://azure.microsoft.com/blog/2014/07/28/azure-mobile-se...
demon_xxi
2

votes
1

answer
118

Views

Is there anyway to authenticate a user with Github without redirecting them within the current page?

I am looking to allow a user to sign in with github for a website I am creating that will be API driven. However, I am running into a problem that there seems to be no way of authenticating a user and getting their email and name without redirecting them on the current page to github. I have tried t...
2

votes
1

answer
1.2k

Views

How to login with username/password using OAuth2 and microsoft login and HTTP request

I am self answering this to make life easier and more joyful for us developers to find this information, as I personally found that there was lots of info to go through. How to login with username/password (end-user credentials) using OAuth2 and Microsoft login https://login.microsoftonline.com/{app...
ColacX
2

votes
1

answer
58

Views

Angular app with stormPath java sdk

I have an angular app and I have the spring-boot app for the stormpath java SDK for authentication. I have all the endpoints created for registration,receive token, Refresh token etc. I have the registration flow setup and I am able to login the user. These are the few questions I am having trouble...
Grinish Nepal
2

votes
0

answer
189

Views

500 error when trying to add new order in TradeGecko API

Pretty specific problem, but I'll lay it out as best I can. I can easily make a POST request to the TradeGecko API (detailed here: http://developer.tradegecko.com/) and get variant prices in return, that part of the interaction is working smoothly. However, I'm trying to create a new order and I fee...
Ladonite
2

votes
2

answer
3.8k

Views

fetching list of friends using facebook 2.0

is there any way to fetch list of friends using facebook 2.0 API? I was reading this upgrade from the API and it seems it is quite difficult to fetch the friends now, but I have seen 2 permissions read_friendlist user_friends Is their any way to fetch list of friends? and what about the widgets that...
user1765876
2

votes
0

answer
334

Views

Javascript Client for FOSOAuthServerBundle

I have some difficulties to get the authentification workflow working. I tried JSO https://github.com/andreassolberg/jso/blob/master/README-getting-started.md here is my test code (ignore the login fields) Login login: password: $(document).ready(function () { var jso; $.getJSON('parameters.json',...
jeff
2

votes
1

answer
716

Views

How to use Google Drive Client Library for Java with my homegrown OAUTH 2 Framework for web application?

My web application already does OAUTh authentication successfully with Facebook, LinkedIn, Google etc. using REST and/or signpost-oauth library. So once I already have ACCES_TOKEN from GoogleAPIs server using my web app , I want to use Google Drive Client to access files etc. This is the google Dr...
user193116
2

votes
3

answer
8.3k

Views

Yammer REST API: How to get access tokens for external networks?

I'm working on an ASP.NET web application that reads data from Yammer. I've successfully acomplished authentication and getting messages from the 'home' network. Now I want to switch to another network and get messages from it. I've read all the documentation and specifically the Networks section wh...
emzero
2

votes
2

answer
279

Views

Azure AD OAuth 2 with Endpoint Ver. 2 - work account succeeds, personal account fails with “Microsoft account is experiencing technical problems.”

We are adding sign-in with Microsoft to our website. Our requirement is to support both personal Microsoft accounts and work/school accounts from Azure Active Directory. I'm only permitted to post 2 URLs in this post so I will break them with spaces. We carefully followed Microsoft's documentation a...
Stephen M.
2

votes
2

answer
2.4k

Views

Client, Auth Server and Logout

So, i have a standalone OAuth2 auth server and client app (web-based), all using Spring OAuth2. I have a login form host on the Auth server with redirection etc from the client app using Spring setup (via the login form). All good so far. I added a logout setup on the client: .and() .logout() .addLo...
martin samm
2

votes
1

answer
355

Views

Why do I get a 401 error when using Ruby to execute a Google Fusion Tables API command?

I'm using the Ruby gem 'google-api-client', and I make sure to add in all my credentials, but for some reason, I keep getting a 401 error from Google. Here's my code: ['google/api_client','json'].each{|g| require g} client_secrets = File.open('client_secrets.json','r').read # My client secrets are s...
user1626730
2

votes
2

answer
5.1k

Views

Single Sign on to secure REST APIs and internal web based system

I need some suggestions on how to secure REST APIs and web based internal system using a single authentication system. I am looking into the possibility of using: oAuth 2.0 JA-SIG CAS Custom Implementation (implement two separate APIs) To secure REST APIs and redirect calls to specific API instance...
Saqib
2

votes
1

answer
287

Views

Django and CSRF protection for mobile apps

I am using Django + Django REST Framework + Django OAuth Toolkit. I understand that AJAX calls from a web session require CSRF protection, but it is my understanding that mobile apps don’t as the very thing CSRF check are protecting against can’t happen in a dedicated app. If a person has an OAu...
seawolf
2

votes
0

answer
97

Views

Oauth 1.0 compatiability with Amazon Oauth 2.0

I'm currently working with PhpoAuthLib Library Here and i'm working with trying to integrate it into an Alexa skill for the Amazon echo. I have pretty much got the entire workflow and I am stumped on the last step as Amazon's error reporting is less than helpful and instead of giving a specific det...
Lewis Thomas
2

votes
3

answer
4.7k

Views

iPhone Objective C oauth 2.0 Login - unsupported_grant_type

I am brand new to salesforce development and am trying to connect to Salesforce to get the token. I guess my question is 2 fold: 1) Do I have to use a webpage to authenticate with SF? 2) If not, why is this not working? When I try to use the username and password method of authenticating, I get: {...
smcdrc
2

votes
1

answer
765

Views

Azure web App .net core OpenID redirect_uri issue

I am having an issue with a .NET core web app utilizing OpenID for AD authentication. Currently in my application settings the CallBackPath is set to /signin-oidc 'Authentication': { 'AzureAd': { 'AADInstance': 'microsoftonlinecom/', 'CallbackPath': '/signin-oidc' and on azure the replyurl is set t...
Rami
2

votes
1

answer
1.3k

Views

InvalidOperationException: No authentication handler is registered for the scheme Bearer.

I am trying to implement Aspnet.security.openidconnect (ASOS) with .net core 2.1 I can successfully generate access_token and refreshtoken using ASOS but when I am adding Authorize Attribute on any of my action and try to call that action with postman I am getting following exception: InvalidOperati...
Ask
2

votes
1

answer
179

Views

Keeping user logged into mobile app after token expiration

After a user has logged in their oauth2 access token is saved on the client system, in this case mobile phone. What is supposed to happen when the token expires? Should the client do periodic checks to make sure the token isn't stale, and if it is close to expiring request a new one? Or after the to...
JimboSlice
2

votes
1

answer
516

Views

Python Simple_Salesforce Close Connection

I just recently started using the Simple_Saleforce package for python https://pypi.python.org/pypi/simple-salesforce I am wondering how long does the connection last once you have logged in? Is there a manual way to close() the connection? I have looked through the documentation and source code, but...
Agent0
2

votes
1

answer
219

Views

How can one manage the access of a book created using GitBook?

I have created a book using GitBook. I want only specific set of people to be able to read my book. These set of people should be able to access it by logging in somewhere or by any other method. How shall I achieve this? Even if the link is public, how shall I restrict the users who see it? (I don'...
Steric
2

votes
0

answer
209

Views

Delegation with OAuth2 in microservices architecture

I have a general question on delegation with OAuth2. I watched a great tutorial by Dave Syer on microservices security. As far as I understand he suggests that individual microservices will be Resource servers. Which is totally fine. I also read a token relay section from spring cloud security which...
Jan Zyka
2

votes
3

answer
2k

Views

PHPMailer SMTP Gmail authentification error

I'm sending emails using PHPMailer 5.2.10 with the next code: function SendGmail($to,$subj,$body) { $mail = new PHPMailer(); // create a new object $mail->IsSMTP(); // enable SMTP $mail->SMTPDebug = 1; // debugging: 1 = errors and messages, 2 = messages only $mail->SMTPAuth = true; // authentication...
user3558897
2

votes
0

answer
1.2k

Views

spring-security-oauth AuthenticationManager inject order

I'm having the weirdest issue at hand. Having an application secured by spring-seucrity-oauth(2) the authentication suddenly stopped working and we can't find what's going wrong. Well actually we can. It's the authenticationManager that is injected too late. When configuring the AuthorizationServer...
Jonas Geiregat
2

votes
0

answer
36

Views

Spring OAUTH2 server gives a error back saying “Full authentication is required to access this resourc” with 401

My curl command is working fine but only problem with post man 'POST METHOD' request curl: curl [email protected]:8089/oauth/token -d grant_type=password -d username=jack -d password=act123 postman: http://localhost:8089/oauth/token?client_id=act_client&grant_type=password&username=jack&password...
Support
2

votes
2

answer
1.4k

Views

Suddenly getting 405 Method Not Allowed during POST to create folder in box-api

I'm suddenly seeing a problem with code (java) that was working about a week ago using the Box API. I'm getting a 405 Method Not Allowed while doing a POST to create a folder. I have tried to trouble shoot the problem assuming it may have something to do with recent v2 api going live. However, going...
Raffi M.
2

votes
2

answer
2.5k

Views

HybridAuth “Tiny Social Hub” example redirecting to /hybridauth/?hauth.start=Facebook&hauth.time

I'm trying to figure out how HybridAuth works. I've installed it on my server as per instructions, added my developer key for Facebook, Google etc, however when i go to the 'Tiny Social Hub' example: www.mysite.org/inc/examples/social_hub/login.php and click 'Sign-in with Facebook', i get redirected...
Mike Mike
2

votes
1

answer
364

Views

guzzle NULL response lumen php oauth2

I have used this for lumen oauth2.0. I followed all steps. But I got an error. I got NULL response from guzzle. Please check code in proxy.php below. namespace App\Auth; use GuzzleHttp\Client; class Proxy { public function attemptLogin($credentials) { return $this->proxy('password', $credentials); }...
Rahul Patel