OpenID Connect only supports Discovery that is meant to find your Provider based on some hint you give it (e-mail, account, URL, domain etc.); it won’t give you a persistent identifier for which you can delegate authentication to a configurable Provider of your choice. So if you only want to use a custom URI to … Read more
Google OAuth 2 Refresh Token is Missing for Web App but Present for localhost
Are signIn and signOut used on the same page? Div g-signin2 loads and inits gapi.auth2 so it should work as long as those are on the same page. In case signOut is on separate page, you should manually load and init gapi.auth2 library. Full example (you have to replace YOUR_CLIENT_ID with your actual client_id): <html> … Read more
From the specification point of view, what you are encountering is [OpenID Connect]. id_token is a [JWS] signed [JWT]. In this case, it is a “.” separated string with three components. The first portion is the header. The second is the payload. The third is the signature. Each of them are Base64url encoded string. When … Read more
To get OWIN Google login to work properly on a standard Visual Studio 2013, ASP.Net MVC5 site, I had to: Setup a Google OpenId account at https://console.developers.google.com/project Set the callback URL there to blah/signin-google. Important notes on things you don’t need to do: You don’t need to use HTTPS for Google to redirect back; you … Read more