I managed to get this work based on the hints by Michael Ressler’s answer but with some tweaks. My goal was to allow both Basic Auth and Oauth on the same resource endpoints, e.g., /leafcase/123. I was trapped for quite some time due to the ordering of the filterChains (can be inspected in FilterChainProxy.filterChains); the … Read more
It seems this can happen if you did not set an EMAIL ADDRESS on the Consent screen. Go to your Google Cloud Console Open your project Click APIs & auth Click Consent screen, and set EMAIL ADDRESS As per @ajmccall’s answer, delete and recreate the client ID This seems to have helped others, right now … Read more
I like this Medium post about the difference, all cred to this author. https://medium.com/@nilasini/id-token-vs-access-token-17e7dd622084 If you are using Azure AD B2C like I am you can read more here: https://learn.microsoft.com/en-us/azure/active-directory-b2c/openid-connect ID Token You will get id token if you are using scope as openid. Id token is specific to openid scope. With openid scope you … Read more
From http://requests-oauthlib.readthedocs.org/en/latest/examples/real_world_example.html: You should note that Oauth2 works through SSL layer. If your server is not parametrized to allow HTTPS, the fetch_token method will raise an oauthlib.oauth2.rfc6749.errors.InsecureTransportError . Most people don’t set SSL on their server while testing and that is fine. You can disable this check in two ways: By setting an environment variable. … Read more
The only way to tell if a cookie is valid is to use it and catch the error if it is expired. There is no polling method or anything to check if a token is valid. To get a new token, simply redirect the user to the authentication page again. Because they have already authorized … Read more
The answer shows how to send email with gmail API and python. Also updated the answer to send emails with attachment. Gmail API & OAuth -> no need to save the username and password in the script. The first time the script opens a browser to authorize the script and will store credentials locally (it … Read more
I think that this is due to Laravel Passport, you should try the following command: php artisan passport:install This command will create the encryption keys needed to generate secure access tokens. In addition, the command will create “personal access” and “password grant” clients which will be used to generate access tokens Source: https://laravel.com/docs/5.4/passport
I faced the same Issue, currently the work still in progress. when I finish the documentation, I might post it here. for time being: please check the draft: Enrich IdentityServer Documentation with OIDC and OAuth2 Flows section #73 Update: OIDC and OAuth2 Flows
I think G does this when your app requests a token and there is still a valid access or refresh token for the user for the scopes in question. The solution is to revoke tokens when you’re done with them (either on user logout or immediately after authenticating the user) by issuing this request: https://accounts.google.com/o/oauth2/revoke?token={token} … Read more