Questions tagged [oauth-2.0]

2

votes
0

answer
1.1k

Views

Spring boot application with Google OAuth2 integration issue

I am developing a web application, and using google sign in the application. After adding google sign in the app, it is not starting, it's failing as soon as i run the application. The following error I am getting in console - APPLICATION FAILED TO START *************************** Description: Bin...
Narendra Kumar
2

votes
2

answer
6.3k

Views

Getting oauth2 to work with spring-boot and rest

I am trying to get oauth2 to work with spring-boot and protect my rest method calls, sans much success. I have tried using spring-security-oauth2-javaconfig:1.0.0.CI-SNAPSHOT with rg.springframework.boot:spring-boot-starter-security:1.0.0.RC1. *gradle: compile('org.springframework.boot:spring-boot-s...
user3304825
2

votes
2

answer
397

Views

How to authenticate in Google Fusion Tables with Oauth2 in Dart?

I'm trying to get data from a fusion table. I write, as it is written in the example import 'package:google_fusiontables_v1_api/fusiontables_v1_api_browser.dart'; import 'package:google_oauth2_client/google_oauth2_browser.dart'; class CFusionTable { static const _tableName = '*mytablename*'; static...
Sheridan
2

votes
2

answer
2.9k

Views

How to use OAuth with Google Calendar to access only ONE calendar?

I'm building a web application for a customer and I'm not really sure I'm doing the right thing... Basically, I created a PHP application that read, edit, delete calendars on Google and keeps a copy on my own web application DB (for various reasons). Now, I read about the OAuth 2.0 and realise it co...
Joel
2

votes
2

answer
602

Views

Eloqua OAuth2 authentication get token URL inaccessible

I want to use OAuth2 authentication in my application for calling Eloqua APIs using access token. I'm following instructions given in the link http://docs.oracle.com/cloud/latest/marketingcs_gs/OMCAB/Developers/GettingStarted/Authentication/authenticate-using-oau… and using Resource Owner Password...
Ash T
2

votes
0

answer
55

Views

can 3 legged oauth static callback url be converted to dynamic url without severe security repercussions?

github 3 legged oauth authentication requires defining the callback url (or at least the host) while creating the github application. that means the url is static. we have several deployments for our site, and each deployment has a different host, so we needed a github application for each deploymen...
nathan g
2

votes
2

answer
451

Views

How to validate scopes for public client using resource owner credentials grant

Given a situation that a public Javascript client wants to access an API endpoint using the Resource Owner Password Credentials Grant type. A typical request would look like this: username = '[email protected]' password = '[email protected]!' grant_type = 'password' scope = 'openid offline_access' No cli...
Cristian E.
2

votes
0

answer
192

Views

Google App Engine + Authentification on Android using GoogleApiClient

using GoogleApiClient from example https://developers.google.com/+/quickstart/android i can sign in with my g+ account on android mobile device. I can also get user id with Person currentUser = Plus.PeopleApi.getCurrentPerson(mGoogleApiClient); String id = currentUser.getId(); The question is, how...
RuSsCiTy
2

votes
1

answer
1.8k

Views

How to authenticate with Google Drive PHP API without copy/pasting auth tokens

I am really struggling to understand how this is done. I have followed this example to be able to upload a file to our shared google drive account. This runs from the command-line on a linux box, but it requires me to copy/paste a URL into the browser, copy the authorization token, then paste it ba...
user1027562
2

votes
2

answer
1.3k

Views

Is oauth2 insecure?

I am implementing an oauth2 solution for an API i've created and i'm struggling with the potential insecurites (or my understanding at least). Is it correct that only a single token is generated and used as authentication credentials for an endpoint request. What's stopping a potential brute force a...
Nick
2

votes
1

answer
209

Views

android not honoring trigger.io's tabs.openWithOptions for server side redirect

I've got some basic trigger.io code to open a modal dialog for oauth2 authentication: var url_auth = 'http://10.0.0.70/oauth2/authorize'; var oauth_client_id = '123'; var oauth_redirect_uri = 'http://done.com/oauth2/complete'; forge.tabs.openWithOptions({ url: url_auth + '?response_type=token&client...
roughley
2

votes
0

answer
128

Views

Accessing WD Personal MyCloud NAS Using OAuth2

I'm a newbie in Android app. I'm developing an app that can access my personal western Digital cloud, which is located in my home, using OAuth2.o. I'm using xamarin C#. I searched the web for a month now, I could not find any thing. I already have ClientID and Client Secret from Western Digital. The...
Dallas2017
2

votes
0

answer
104

Views

IdentityServer4 app architecture

I currently have the ability to host one and only one site (meaning under one domain). I will have a SPA front-end, Web Api resource, and then IdentityServer4 for security (utilizing AspNetCore Identity framework for user management). Something feels 'wrong' with this approach as a single hosted sit...
Shane Oborn
2

votes
3

answer
736

Views

Google Cloud Messaging (GCM) with local device groups on Android gives HTTP Error code 401

I am trying to get Google Cloud Messaging (GCM) to work on Android with local device groups as described on https://developers.google.com/cloud-messaging/android/client-device-group . I have enabled the following services in the web console ( https://console.developers.google.com ): Google Cloud Mes...
Morten E. Rasmussen
2

votes
1

answer
1.4k

Views

Google plus login access token retriew

I need to get access token and send it to the server. With that access token server should get all user details, like name, profile picture and email. I can get access token using Scopes.PLUS_LOGIN and Scopes.PLUS_ME, but with that access token server can't get user email. Here is my code: @Override...
Zookey
2

votes
1

answer
1.3k

Views

Migrating from google calendar api v2 to v3 - Client Authorization

I coded a desktop calendar application a while ago, based on an existing database for an older calendar. A bit later I added functionality to interact with google calenders using the v2 api, that is deprecated for a while now. Functionality might brake in november: Deprecation Policy ..so I thought...
Jan
2

votes
0

answer
278

Views

iPad and iPhone running iOS 10.3.1 on Wi-Fi connected to an IPv6 network. The activity indicator spins indefinitely log in

I am trying to publish an app in itunes connect but the iOS developers tell me this: 'Guideline 2.1 - Performance We discovered one or more bugs in your app when reviewed on iPad and iPhone running iOS 10.3.1 on Wi-Fi connected to an IPv6 network. Specifically, the activity indicator still spins in...
Alex
2

votes
0

answer
183

Views

How to integrate oauth with gwt?

Here is my code, how do I use oauth to get the data such as user_id or first and last name of the user and sign them to fields? Should I implement them in the onSuccess method? private void addFacebookAuth(){ loginButton.addClickHandler(new ClickHandler(){ @Override public void onClick(ClickEvent ev...
Daniel Wang
2

votes
1

answer
1.5k

Views

How to send an PUT request to a WCF 4.0 REST service that is protected with OAuth 2.0 and DotNetOpenAuth

The question: Are there any means (perhaps a workaround) to support the PUT and DELETE HTTP verbs with a WCF 4.0 REST service secured using OAuth 2.0 and DotNetOpenAuth 4? I'm not using the WCF Web API or WCF Starter Kit. What I have done so far: Consider the following WCF 4.0 REST Service: [Service...
bloudraak
2

votes
0

answer
45

Views

HTML Button returning “Cannot POST /index.php”

I am trying to activate the index.php file which is a function for Stripe Connect. However, when I press the button on my HTML page to activate the function, it results in Cannot POST /pages/index.php. Both the HTML and PHP files are in the same folder. What I am trying to do is automate this: https...
Bob Filay
2

votes
1

answer
314

Views

oauth 2.0 showing authorization page again

I am new to oauth 2.0 and reading up on it. I tried using oauth 2.0 for my app with 37signals site and ran into a problem. Now sure if its as designed. Any here is what I see. User is already logged into 37signals site. My app starts the oauth flow by redirecting him to 37signals site An authoriza...
user1566788
2

votes
2

answer
3.5k

Views

Rest with oauth2

I'm using this library with my codeigniter rest service. Basically, I have a REST_controller, that is inherited, and checks for a valid token, using that library. All I want is to provide an API to secure some of the API methods. Now, I'm lost reading most of the specs for oauth2 and tutorials rega...
jose
2

votes
1

answer
915

Views

How can I use saved tokens in NXOAuth2?

I am trying to implement a solution using the NXOauth2 pod to handle OAuth2 on my iOS app. I am able to go through the installed application flow to get OAuth2 properties including accessToken and refreshToken - and the account is being saved into my NXOAuth2AccountStore properly (verified by inspec...
Eric
2

votes
1

answer
3k

Views

Dropbox OAuth2 authorize API is not redirecting as expected

I'm attempting to connect to the Dropbox API using OAuth2. I'm using DropNet as the client library and using the Token (implicit grant) flow option. The test code (roughly the same as DropNet.Samples.WinForms) is a simple dialog with an embedded browser control to display the API login page. The pro...
Charlie
2

votes
0

answer
35

Views

Getting error while implementing oAuth2.0 in C# Console Self Hosted web API

I am getting localhost(portnumber)://signin-google?state=blahblahblah... once google signing in process completed. Below is the main entry point from where API runs. static void Main(string[] args) { using (var app = WebApp.Start('http://localhost:8090')) { Process.Start('http://localhost:8090/api')...
user3747817
2

votes
1

answer
572

Views

instagram api - cryptic response; not sure if working and unable to test omniauth with this

I am working on an rails app that has as the requirement logging in with omniuth to instagram. This would be my first time using instagrams OAuth endpoint and it is unclear whether it is working (and not clear to project manager either). I'm using their cURL implementation with the following (will r...
timpone
2

votes
0

answer
617

Views

AADSTS70001: Application '574c1791-d632-4180-91e4-38094a8a3a77' is not supported for this API version

I am trying to use office365 api in my single page .net application not an mvc. I got the source code for mvc .net project C# in the website itself. public async Task SignIn() { string authority = 'https://login.microsoftonline.com/common'; string clientId = System.Configuration.ConfigurationManager...
shiba
2

votes
1

answer
838

Views

Use OAuth2 for authentication + compatibility with google.appengine.api.users service

We're trying to put our app on Google Marketplace, and one of the requirements was to use OAuth2 for authentication. Unfortunately (and strangely), AppEngine doesn't have an option for this. Right now, we are using OpenID for authentication. I've been trying to find resources online, but have failed...
john2x
2

votes
1

answer
297

Views

Getting Google+ access token for basic information

I am using code from this tutorial. I just modified it that I just get access token. It's working fine but I want to extended this by scope: https://www.googleapis.com/auth/plus.login And with this I have problem. Google is asking in webbrowser for more permissions but when I say ok I get exception...
Libor Zapletal
2

votes
1

answer
1.3k

Views

Nginx proxy for OAuth2 validation

I have an own OAuth2 provider where you can ask for a token and validate it. I want to protect my REST API (resource server) with OAuth2, so, in every single request, the access token must be validated, against OAuth2 server. I have been doing this validation in the REST API code itself, by intercep...
Héctor
2

votes
1

answer
3k

Views

Using OAuth 2 with desktop c# Application

I never used oauth before, so i wanted my app to open a url on system's default browser, then the user logs in, authorize, etc etc and then i need to send back the authorization code to my application, is there a way to do it? i'm using Trakt's API.
Gabriel Duarte
2

votes
1

answer
618

Views

How do I force oauth authentication to be against a specific user

I'm following the client side authentication as described at https://developers.google.com/accounts/docs/OAuth2UserAgent I am routinely signed on to multiple Google accounts. Normally, the flow will prompt me to choose which account I want to authenticate with. However there are sometimes instances...
pinoyyid
2

votes
0

answer
431

Views

Missunderstood call to Python requests-oauthlib .fetch_token()

I have an OAuth2 authenticated Python-based service where I use requests-oauthlib to do the authentication. My authentication seems to work mostly fine for many users, but I also get quite a few errors reporting 'invalid grant' errors and I'm having some difficulties to find out why. The authorizati...
Jacob Oscarson
2

votes
0

answer
134

Views

JSON web token auth logic with refresh tokens

Angular 4 application running in browser (website backend), displaying from the server data owned by particular user. Server: PHP+MySQL, Zend Framework 3 + Doctrine ORM Naming: access_token: Short lifetime (1 min), allows to access personal resources, carries user_id, base64 encoded, json web token...
Sfisioza
2

votes
1

answer
3.4k

Views

How do you exchange Authorization code for a OAuth2 token for google apis in android?

How do you exchange Authorization code for a OAuth2 token for google apis in android? If you go to https://code.google.com/oauthplayground/ you can exchange them, but I need to be able to do it in a android app! Any ideas?
William L.
2

votes
3

answer
15.1k

Views

Google Analytics OAuth2: How to solve error: “redirect_uri_mismatch”?

I'm trying to get this example to work: https://developers.google.com/analytics/devguides/config/mgmt/v3/quickstart/web-php#enable The error I'm getting is 'Error: redirect_uri_mismatch' . In order to install the google api resources, I used composer with this command: php composer.phar require goog...
LatentDenis
2

votes
1

answer
585

Views

Alternative to calling gapi.auth.authorize every time

I have a single-page web application that uses Google Apps Script Execution API to call functions that return the data I need. I based my project on the quick start sample code provided by Google. This requires the use of OAuth and I am accomplishing that via functions that make use of the client J...
bobleeswagger
2

votes
1

answer
1.4k

Views

Can't access office365 Calendar API

I want to get an access to Calendar rest API from my Ruby application. I've created azure multi-tenant app, and configured it. I'm trying to get an access token to resource 'https://outlook.office365com/', but I get an error 'AADSTS50001: Resource 'https://outlook.office365.com/' is disabled.' I ca...
Valeriy S.
2

votes
1

answer
481

Views

.net Youtube api v3 upload videos to an specific account

I have a web application in .NET with youtube api v2 that uploads my clients videos to my companny channel, I want to migrate the youtube api to v3 but the ClientLogin is deprecated, when a client try to upload a video with oauth 2.0 the video uploads in the channel of my client, not in the company...
2

votes
0

answer
921

Views

Sending Gmail in .Net Using oAuth2 Authentication [Rephrased]

I have written a .Net app in VB that requests access to a user's gmail contacts. It uses oAuth2 to do this in the manner described here: https://developers.google.com/accounts/docs/OAuth2. It uses these libraries: https://code.google.com/p/google-api-dotnet-client/wiki/OAuth2 The application has a d...
Sparked