reinert / gwt-oauth2 Goto Github PK

Expose the login parameters so we can 
1) specify [code] as the token so we can pass that to a server side page which 
will get the access token and ID token (crucial if we are going to match the 
user to our user database).
2) allow us to change the redirect_uri to accomplish that.

Please see how MS's LiveConnect and Facebook's javascript libraries do OAuth 
2.0.

WL.Event.subscribe("auth.login", onWLiveLoginComplete);
WL.Event.subscribe("auth.logout", onWLiveLogoutComplete);
WL.init({ client_id: wlive_client_id, redirect_uri: wlive_redirect_uri, scope: 
wlive_scope, status: true, response_type: "code" });

//If the user checked "Remember me" in the last login, Init actually logs the 
user in and raises the callback without displaying the login popup.

//displays the popup on some button click
WL.login();

Added Facebook.

version 0.2

is there any refresh token to extend the time of the existing token, without 
having to popup dialog and user need to press "allow" again? 

What steps will reproduce the problem?
1.Using JavaScript to call the google analytics api 
2.In the authorization/authentication step
3.Calling "gapi.auth.authorize(parameters, callback) " and passing a callback 
function 

What is the expected output? What do you see instead?
The callback function should be called. But it is not getting called. Tried 
putting an "alert()" inside the callback function but it never gets executed.  

What version of the product are you using? On what operating system?
Windows-7 

Please provide any additional information below.
I am using the sample code for core reporting api provided by google itself. ( 
https://code.google.com/p/google-api-javascript-client/source/browse/#hg%2Fsampl
es%2Fanalytics%2Fv3 ) 

What steps will reproduce the problem?
1. Open 
https://gwt-oauth2.googlecode.com/svn/trunk/samples/script/ScriptSample.html in 
Firefox 12.0
2. Notice the problem

What is the expected output? What do you see instead?
Expected output is two buttons, one of which lets you authenticate.
Instead, I see a single small button (looks like a gray bar). When clicked it 
lets me log in to my Google account, then it throws "Error: 
redirect_uri_mismatch"
with "The redirect URI in the request: 
https://gwt-oauth2.googlecode.com/svn/trunk/samples/script/oauthWindow.html did 
not match a registered redirect URI"

What version of the product are you using? On what operating system?
This is using the latest version of gwt-oauth2.js on Firefox 12 on Debian 
Wheezy.


Please provide any additional information below.

I was going through the source code and I was wondering if the 
following criterion[present within login(AuthRequest req, final 
Callback callback) method of Auth .java] is enough(does it cover all 
corner cases ??) to determine whether a previously-fetched access 
token is still valid or not  . 
 final TokenInfo info = getToken(req); 
   if (info == null || info.expires == null || expiringSoon(info)) { 
      doLogin(authUrl, callback); 
    } else { 
      scheduler.scheduleDeferred(new ScheduledCommand() { 
        @Override 
        public void execute() { 
         callback.onSuccess(info.accessToken); 
        } 
     }); 
  } 
The reason I ask that is because I am not sure if the aforementioned 
criterion covers for following case: 
1)User opens a brand new browser session. 
2)User  visits  TestWebsite.com(TestWebsite.com uses gwt-oauth2 to 
interface with facebook) 
3)User clicks on, say, the classic fLogin icon, present on 
TestWebsite.com and that user action results in the facebook login 
window to popup. 
4)User enters his/her facebook credentials into the pop up, clicks 
"log in" and logs in succesfully  to TestWebsite.com using facebook 
credentials. 
So far so good. 
5)Now, the user opens a different tab and visits facebook.com and logs 
out of facebook.com by clicking the log out link of facebook.com. 
6)The user now switches to the tab with Testwebsite.com and logs out 
of Testwebsite.com as well. 
7)The user, who is still on Testwebsite.com, clicks on the fLogin 
icon. 
Now, it seems like gwt-oauth2 is still trying to make use of the 
previously fetched access token which is no longer valid because of 
the fact that the user has logged out of 
facebook.com 

We would like to reauthenticate to Facebook before each access token request.
That can be achieved using: 
https://developers.facebook.com/docs/authentication/reauthentication/

However, it's very difficult to extends Auth or Request in order to add this 
tag.

Is it possible to request authorization code instead of access token as return 
value?

My application needs to run a long-running job in the backend server that 
should access user's Google Spreadsheet once a day.

In such a case authorization code works better than access token, as the 
following (See "Response_type parameter") mentions.
http://code.google.com/apis/accounts/docs/OAuth2Login.html

Thanks!
Hyun

Which OAuth2 provider or API service?
  Twitter 

External references, such as API reference guide?


Please provide any additional information below.

  Looking for a twitter connection setting or a workaround if twitter  supports OAuth2.

What steps will reproduce the problem?
1. Use the library to try to log in to an OAuth2 service
2. See that the Window size is always width=800,height=600
3. Cry and create your own version of AuthImpl that makes kittens cry with the 
workaround
4. Enter this report

What is the expected output? What do you see instead?
I would hope that there would be a way to determine how the auth window is 
going to be formatted.

Please provide any additional information below.

The bad person workaround that we implemented is to create our own version of 
AuthImpl which has a member variable for the window dimension string.  This can 
be changed via a setter and is then used on the openWindow call.  Usage of the 
variable resets it to the default (which is the sadness making part).

Hey there,

This library looks great.
I would like to see an example with LinkedIn.

Thanks in advance!



Tom

Kindly provide a sample for Yahoo authentication 

You can get an API key at https://developer.apps.yahoo.com/wsregapp/

Thanks,
Arvind.

[deleted issue]

What steps will reproduce the problem?
1. Build a simple iOS app with just a WebView. And load the 
http://gwt-oauth2.googlecode.com/svn/trunk/samples/script/ScriptSample.html 
page in webview
2. Click Authenticate With Google button and enter your credentials. Allow the 
app to use your information


What is the expected output? What do you see instead?
In a regular browser or even using Safari on iPhone, the alert shows the auth 
token. But the iOS app with web view loads a blank page (essentially the 
oauthWindow.html page)

What version of the product are you using? On what operating system?
I am using the sample auth app at 
http://gwt-oauth2.googlecode.com/svn/trunk/samples/script/ScriptSample.html

XCode 4.2, iPhone 5.0 simulator

Please provide any additional information below.
I must say this is a great utility. Excellent job. I can still do what I need 
from oauthWindow.html, but I would like to be in the callback so I can use the 
GWT state conveniently

I have attached the iOS app (XCode 4.2 project)

Please let me know if I am missing anything.

Which OAuth2 provider or API service?


External references, such as API reference guide?


Please provide any additional information below.

What steps will reproduce the problem?

Using the demo app call

AuthRequest req = new 
AuthRequest(GOOGLE_AUTH_URL,    GOOGLE_CLIENT_ID).withScopes(BUZZ_READONLY_SCOPE);

This causes the error 400, redirect_uri_mismatch

[deleted issue]

It would be nice to be able to query the library for whether or not a token has 
been stored for a particular service, more specifically for an authUrl/scopes 
combo, potentially with added information about whether the token is expired or 
how long before it expires.

The API might look something like this:

boolean isExpired = Auth.getTokenInfo("https://google.auth.url", 
"buzz.scope").isExpired();
long expiresInMs = Auth.getTokenInfo("https://facebook.auth.url", 
"email").expiresIn();

This should be exported as a JS method as well, and should be covered in the 
sample code.

4.2.2.  Access Token Response
...
   expires_in
         OPTIONAL.  The lifetime in seconds of the access token.  For
         example, the value "3600" denotes that the access token will
         expire in one hour from the time the response was generated.


If the expires_in parameter is omitted gwt-oauth2 will immediately invallidate 
the access_token on the next use. 

What is the expected output? What do you see instead?

It seems more logical that the token won't expire if the expires_in is ommited

What version of the product are you using? On what operating system?
0.2-alpha

What steps will reproduce the problem?
1. Use scope https://www.googleapis.com/auth/userinfo#email to retrieve user 
email account
2. URL component delimiter # character in this scope is not encoded by 
URL.encode and cause whatever after # to be discarded

What is the expected output? What do you see instead?
error: invalid_request: Missing required parameter: redirect_uri 


Please provide any additional information below.

URL.encodeQueryString may fix issue. 

PHP in mediathemple servers

What steps will reproduce the problem?
1.settiing the request with scope,  client id  end google auth url
2.Calling AuthRequest req = new AuthRequest(GOOGLE_AUTH_URL, GOOGLE_CLIENT_ID)
                .withScopes(PLUS_ME_SCOPE);
3.calling AUTH = Auth.get()

What is the expected output? What do you see instead?
normally it should work
i have this instead :
         No source code is available for type com.google.api.gwt.oauth2.client.Auth; did you forget to inherit a required module?
            No source code is available for type com.google.api.gwt.oauth2.client.AuthRequest; did you forget to inherit a required module?


What version of the product are you using? On what operating system?
App engine SDK 1.6.4 on macosx 1.5.8 with chrome

Please Help !!!!!!!

[deleted issue]

What steps will reproduce the problem?
1. try https://oauth2-login-demo.appspot.com/profile
2. click Login
3. wait

What is the expected output? What do you see instead?

Error: redirect_uri_mismatch

The redirect URI in the request: http://www.oauth2-login-demo.appspot.com/code 
did not match a registered redirect URI

------------------------------
Request Details

    from_login=1
    scope=https://www.googleapis.com/auth/userinfo.profile https://www.googleapis.com/auth/userinfo.email
    response_type=code
    access_type=online
    redirect_uri=http://www.oauth2-login-demo.appspot.com/code
    approval_prompt=force
    state=/profile
    as=-24125d47b8bebe3b
    pli=1
    client_id=812741506391.apps.googleusercontent.com
    authuser=0
    hl=en
------------------------------


What version of the product are you using? On what operating system?
win7 FF12

Please provide any additional information below.
na

i want to use google calender api from my installed application is there any 
way i can use only javascript for this 

What steps will reproduce the problem?
1. Log in using Facebook. 
2. On the other browser tab open facebook.com and log out
3. Try to log in on your page again

I expected to see popup login window again but I only get HTTP 400 Bad Request 
error.

What version of the product are you using? On what operating system?
Most recent version from your site. Windows 7.


Thank you.

I'm trying upload photo to picasa 
i use this C# code 

I'm successfully get access token , but when i use it with 
-----------
                authFactory.Token = googleRespnse.access_token;
                PicasaService service = new PicasaService(authFactory.ApplicationName);
                service.RequestFactory = authFactory;
------------
i got error message


using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.Script.Serialization;
using Google.GData.Client;
using Google.Picasa;
using Google.GData.Photos;
using System.Net;
using System.IO;

public partial class _2gplus_move_auth_goauth : System.Web.UI.Page
{
    protected void Page_Load(object sender, EventArgs e)
    {
        string GKey = System.Configuration.ConfigurationManager.AppSettings["GKey"];
        string GSecret = System.Configuration.ConfigurationManager.AppSettings["GSecret"];
        string scop = "http://picasaweb.google.com/data/feed/api/user/default/";
        string next = System.Configuration.ConfigurationManager.AppSettings["GMyWebSite"] + System.Configuration.ConfigurationManager.AppSettings["GPostAuthorizeRedirectURL"];

        if ((Request["token"] == null) && (Request["error"] == null) && (Request["fromfb"]=="ok"))
        {

            string Url = string.Format("https://accounts.google.com/o/oauth2/auth?client_id={0}&redirect_uri={1}&scope={2}&response_type=code", GKey, next, scop);
            Response.Redirect(Url);

        }
        else if((Page.Request.QueryString["goauth"] != null) && (Page.Request.QueryString["goauth"] == "ok")) //if (Request["goauth"] == "ok")
        {
            if ((Page.Request.QueryString["code"] != null) && (Page.Request.QueryString["code"] != ""))
            {
                string code = Page.Request.QueryString["code"];
                string link = string.Format("https://accounts.google.com/o/oauth2/token");
                string parm = string.Format("client_id={0}&client_secret={1}&redirect_uri={2}&code={3}&grant_type=authorization_code", GKey, GSecret, next, code);
                string response = webFetch(link, parm);

                JavaScriptSerializer js = new JavaScriptSerializer();
                GooGleRespnse googleRespnse=js.Deserialize<GooGleRespnse>(response);

                GAuthSubRequestFactory authFactory = new GAuthSubRequestFactory("lh2","exampleCo-exampleApp-1");
                authFactory.Token = googleRespnse.access_token;
                PicasaService service = new PicasaService(authFactory.ApplicationName);
                service.RequestFactory = authFactory;

                string username = "default";
                AlbumEntry newEntry = new AlbumEntry();
                newEntry.Title.Text = "New album";
                newEntry.Summary.Text = "This is an album";
                AlbumAccessor ac = new AlbumAccessor(newEntry);
                ac.Access = "public";

                Uri feedUri = new Uri(PicasaQuery.CreatePicasaUri(username));

                PicasaEntry createdEntry = (PicasaEntry)service.Insert(feedUri, newEntry);


            }
            else
            {
                Server.Transfer("gonotoauth.aspx");
            }
            Session["google_access_token"] = Request["access_token"];

        }
    }

    private string webFetch(string link, string parameter)
    {
        string responseFromServer = "";
        HttpWebRequest request = (HttpWebRequest)WebRequest.Create(link);
        request.Method = "POST";
        byte[] byteArray = System.Text.Encoding.UTF8.GetBytes(parameter);

        request.ContentType = "application/x-www-form-urlencoded";
        request.ContentLength = byteArray.Length;
        Stream dataStream = request.GetRequestStream();
        dataStream.Write(byteArray, 0, byteArray.Length);
        dataStream.Close();

        HttpWebResponse response = (HttpWebResponse)request.GetResponse();

        if (HttpStatusCode.OK == response.StatusCode)
        {
            dataStream = response.GetResponseStream();
            StreamReader reader = new StreamReader(dataStream);
            responseFromServer = reader.ReadToEnd();
            response.Close();
        }

        return responseFromServer;
    }
    class GooGleRespnse
    {
        public string access_token  {get;set;}
        public string expires_in    { get; set; }
        public string refresh_token { get; set; }
    }
}

Text on Generated Button not visible, minor correction to the code

It would be great if you could also implement oauth ver 1 as part of this 
library, as that is used by many providers... If you add this, then the same 
library can be used for oauth + oauth 2 authentication.

Regards,
Arvind.

If your app calls:
        Auth.get().clearAllTokens();

This will call do a "clear" on the local storage.

If an application is using local storage, you will nuke all they have stored.  
It would be best if you would only delete the data in local storage that you 
have stored.

Kindly provide a sample for Windows Live Auth. For some time now, Widows Live 
also supports OAuth 2 authentication.

You can get an API key at https://manage.dev.live.com/Applications/Index

Thanks,
Arvind.

OAuth2 provider

I want create a widget to authenticate in facebook, twitter and google. using 
gwt-oauth2.js or php.

thanks.

Which OAuth2 provider or API service?
Google

External references, such as API reference guide?


Please provide any additional information below.

I want commplete code to get profile info

Which OAuth2 provider or API service?

Factual

External references, such as API reference guide?

http://developer.factual.com/display/docs/Core+API+-+Oauth

Please provide any additional information below.

Factual uses 2-legged oauth.

when try to run in ie7, i get below error.  the switch code that
suppose to use CookieImpl does not work because it is extended from
TokenStoreImpl which using localStorage


Caused by: java.lang.NullPointerException: Storage is null
   at
com.google.api.gwt.oauth2.client.TokenStoreImpl.<clinit>(TokenStoreImpl.java:
33)
   at
com.google.api.gwt.oauth2.client.AuthImpl.getTokenStore(AuthImpl.java:
56)
   at com.google.api.gwt.oauth2.client.AuthImpl.<init>(AuthImpl.java:
41)
   at
com.google.api.gwt.oauth2.client.AuthImpl.<clinit>(AuthImpl.java:36)
   at com.google.api.gwt.oauth2.client.Auth.get(Auth.java:34)

What steps will reproduce the problem?
1. Click "Authenticate with Facebook"
2. Give Facebook permission
3. The window redirects to oauthWindow.html but doesn't close

What is the expected output? What do you see instead?
oauthWindow.html should close and the token should be received. In the sample 
page, the alert containing "Got an OAuth token" should be displayed. This is 
the behavior observed with Google and Windows Live.
Instead the window does not close and the token is not received.
Sample here: 
http://gwt-oauth2.googlecode.com/svn/trunk/samples/multi/demo/Sample.html

What version of the product are you using? On what operating system?
gwt-oauth2-0.2-alpha.jar
Windows 7 64-bit
Google Chrome 19

Please provide any additional information below.
On Internet Explorer 9, the behavior is as expected (i.e. window closes, token 
is received).
Is this something that has to be done by Google Chrome or by gwt-oauth2?

What steps will reproduce the problem?
1. Go to 
http://gwt-oauth2.googlecode.com/svn/trunk/samples/script/ScriptSample.html in 
Firefox 12
2. Observe a gray bar

What is the expected output? What do you see instead?
Expected output is two labeled buttons, instead all I see is a single gray bar.

What version of the product are you using? On what operating system?
I'm using Firefox 12 on Debian Wheezy.

Please provide any additional information below.
I'm not sure whether or not this is a Firefox bug or a bug in the sample. Using 
Firebug's console I'm able to tell innerText is set correctly for at least the 
first button, but I still don't see it.

Perhaps this is already possible but not described in the docs. If the user 
selects "Remember Me" in the login popup there should be a way to login the 
user without clicking a button in subsequent visits-- redirecting if successful 
or doing nothing if not.

Example: 
<pageLoad>
var req = {"authUrl": GOOGLE_AUTH_URL, "clientId": GOOGLE_CLIENT_ID, "scopes" : 
[ PLUS_ME_SCOPE ]};

oauth2.Init(req, function(token) {alert("Got an OAuth token:\n" + token + "\n" 
+ "Token expires in " + oauth2.expiresIn(req) + " ms\n");}); 

For instance, MS's LiveConnect oAuth2 implementation works exactly this way. 
Init and Login where Init returns the token if the user is already logged in 
and Login tries to do the same thing but displays the login popup if the user 
is not logged in.

uiuifryu

What steps will reproduce the problem?
1. Download the demo
2. Setup the demo
3. Compile

Compiler says:

The type com.google.gwt.core.client.Callback cannot be resolved. It is 
indirectly referenced from required .class files    

when i run one example with this library i get the below error. i'm using GWT 
eclipse plugin 2.2.0 on linux

04:10:53.710 ERROR? goauth? Line 24: The import com.google.gwt.storage cannot 
be resolved

Which OAuth2 provider or API service?


External references, such as API reference guide?


Please provide any additional information below.

Which OAuth2 provider or API service?
Google Analytics Core Reporting API service

External references, such as API reference guide?


Please provide any additional information below.
Not able to authorize using the old protocol. Please help regarding the new 
Oauth 2.0 I want to try with that. 

I have taken the authentication code examples straight from the website and 
used in my GWT app. But when popup for Facebook authentication loads up, it 
says an error straight away. I deduce that to the fact that I can not give my 
app secret along with app id in AuthRequest constructor. Or atleast that is 
what I think the issue is, as in every other examples providing app secret for 
facebook seems mandatory. Please advice. Thanks.

What version of the product are you using? On what operating system?
gwt-oauth2-0.2-alpha

Which OAuth2 provider or API service?
FACEBOOK,
GOOGLE,

External references, such as API reference guide?
SAME

Please provide any additional information below.
--
Hi, you can send me a sample code that performs authentication using sites like 
Facebook and Google?

Have an example written in JAVA. Samples on:
http://gwt-oauth2.googlecode.com/svn/trunk/samples/multi/demo/Sample.html

I need this example in jQuery/JS language, I'm also using ASP.NET.

Regards,
[email protected]

What steps will reproduce the problem?
1.try demo link here https://developers.google.com/accounts/docs/OAuth2UserAgent
2. then 
https://oauth2-login-demo.appspot.com/oauthcallback#state=/profile&access_token=
ya29.AHES6ZQ2FBnANEnmAVom025rgoeiLu3W6K6mrqWmBmm9_PFl&token_type=Bearer&expires_
in=3600
3. wait

What is the expected output? What do you see instead?
expected success, but fail with "something else other than 200 was returned" 
thrown

What version of the product are you using? On what operating system?
win7 FF12

Please provide any additional information below.
it's work before last week, and form my test new account seem to be fine there 
but already allow account seem to be broken somehow

What steps will reproduce the problem?
1. Go to 
http://gwt-oauth2.googlecode.com/svn/trunk/samples/script/ScriptSample.html
2. Notice the clear tokens button isn't there

What is the expected output? What do you see instead?
There should be button, it is not there. This appears to be due to oauth2 not 
being defined before it is used. If the function is named and then called in 
body's onLoad the second button will appear.

What version of the product are you using? On what operating system?
This was tested with Firefox 12 and Chromium 18.0.1025.151 on Debian Wheezy.

Hey Jason,

Thanks for the super quick response, could you please provide an example for 
openId?

Thanks a bunch,


Tom

What steps will reproduce the problem?
1. https://crisisdb.com/cdb/GoogleAuth.htm
2.  Click the login button
3.

Error: redirect_uri_mismatch

The redirect URI in the request: https://crisisdb.com/cdb/oauthWindow.html did 
not match a registered redirect URI

Learn more

Request Details
scope=https://www.googleapis.com/auth/plus.me
response_type=token
access_type=online
redirect_uri=https://crisisdb.com/cdb/oauthWindow.html
approval_prompt=auto
client_id=83038019276.apps.googleusercontent.com

NOTE:
I have "oauthWindow.html" in the same folder as my test files and the "js" 
file.  I am using the javascript version.  My app is registered.  IT is a web 
site.

External references, such as a standards document, or specification?


Please describe the feature requested.

I'm not able to view my map from the street view....how do I enable this 
feature?