Google sign-in using AppAuth and cross-client identity -


i using appauth implement google sign-in. app authenticate. need id_token server can communicate server app. believe need include audience:server:client_id:web_client_id shown in following link.

https://developers.google.com/identity/sign-in/android/v1/backend-auth

more information available here: https://developers.google.com/identity/protocols/crossclientauth

how can use web client id app id_token can reliably communicate server using token?

the scope audience:server:client_id:web_client_id specific android. ios need send audience=web_client_id parameter token endpoint.

it works in case using following code.

oidserviceconfiguration *configuration = [[oidserviceconfiguration alloc] initwithauthorizationendpoint:authorizationendpoint tokenendpoint:tokenendpoint];  // builds authentication request oidauthorizationrequest *authorizationrequest = [[oidauthorizationrequest alloc] initwithconfiguration:configuration                                               clientid:kclientid                                                 scopes:@[oidscopeopenid,                                                          oidscopeemail]                                            redirecturl:[nsurl urlwithstring:kredirecturi]                                           responsetype:oidresponsetypecode                                   additionalparameters:nil];  // performs authentication request oidauthorizationuicoordinatorios *coordinator = [[oidauthorizationuicoordinatorios alloc]                                                  initwithpresentingviewcontroller:self]; id<oidauthorizationflowsession> authflowsession = [oidauthorizationservice                                                    presentauthorizationrequest:authorizationrequest                                                    uicoordinator:coordinator                                                    callback:^(oidauthorizationresponse *_nullable authorizationresponse,                                                               nserror *_nullable authorizationerror) {                                                        // inspects response , processes further if needed (e.g. authorization                                                        // code exchange)                                                        if (authorizationresponse) {                                                            if ([authorizationrequest.responsetype                                                                 isequaltostring:oidresponsetypecode]) {                                                                // if request code flow (nb. not hybrid), assumes                                                                // code intended client, , performs authorization                                                                // code exchange                                                                 oidtokenrequest *tokenexchangerequest =                                                                [[oidtokenrequest alloc] initwithconfiguration:authorizationrequest.configuration                                                                                                     granttype:oidgranttypeauthorizationcode                                                                                             authorizationcode:authorizationresponse.authorizationcode                                                                                                   redirecturl:authorizationrequest.redirecturl                                                                                                      clientid:authorizationrequest.clientid                                                                                                  clientsecret:authorizationrequest.clientsecret                                                                                                         scope:authorizationrequest.scope                                                                                                  refreshtoken:nil                                                                                                  codeverifier:authorizationrequest.codeverifier                                                                                          additionalparameters:@{@"audience":kwebclientid}];                                                                //tokenexchangerequest.scope = kaudienceserverclientid;                                                                 [oidauthorizationservice                                                                 performtokenrequest:tokenexchangerequest                                                                 callback:^(oidtokenresponse *_nullable tokenresponse,                                                                            nserror *_nullable tokenerror) {                                                                     oidauthstate *authstate;                                                                     if (tokenresponse) {                                                                         authstate = [[oidauthstate alloc]                                                                                      initwithauthorizationresponse:                                                                                      authorizationresponse                                                                                      tokenresponse:tokenresponse];                                                                     }                                                                      [self onsigninresponse:authstate error:tokenerror];                                                                 }];                                                            } else {                                                                // implicit or hybrid flow (hybrid flow assumes code not                                                                // client)                                                                oidauthstate *authstate = [[oidauthstate alloc]                                                                                           initwithauthorizationresponse:authorizationresponse];                                                                 [self onsigninresponse:authstate error:authorizationerror];                                                            }                                                        } else {                                                            [self onsigninresponse:nil error:authorizationerror];                                                        }                                                    }];  myappdelegate *appdelegate = [myappdelegate sharedinstance]; appdelegate.currentauthorizationflow = authflowsession;

Comments

Post a Comment

Popular posts from this blog

python - Selenium remoteWebDriver (& SauceLabs) Firefox moseMoveTo action exception -

while performing simple hover test on firefox through selenium (3.4.0) python bindings (3.4.3) using of available os in saucelabs (except linux, latest available firefox version old), performing following actionchain: hover = actionchains(driver) hover.move_to_element(elm_men_menu).perform() it throws following error: taceback: file [...] in testhover hover.perform() file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/common/action_chains.py", line 80, in perform action() file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/common/action_chains.py", line 290, in <lambda> command.move_to, {'element': to_element.id})) file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/remote/webdriver.py", line 256, in execute self.error_handler.check_response(response) file "/usr/local/lib/python2.7/...
Read more

html - How to custom Bootstrap grid height? -

why bootstrap grid has height 591.067 ? did height came ? .main-post { padding: 20px; background-color: #fff; border: 1px solid #d8d8d8; margin-bottom: 100px; } .main-post .post-categories { margin-bottom: 10px } .main-post h3 { margin: 0 0 10px; color: #777; letter-spacing: -1px; font-weight: bold } .main-post .post-author, .main-post .post-date, .main-post .post-comments { font-size: 12px } .main-post img { display: block; margin: 10px 0; } .main-post .post-summary { line-height: 1.7; color: #888 } .main-post { color: #999 } <div class="col-sm-6"> <div class="main-post"> <h3 class="post-title"> <a href="#"> post title </a> </...
Read more

transpose - Maple isnt executing function but prints function term -

im using maple im in worksheetmode tried using maple input , 2d input , want transpose matrix a: := `<|>`(`<,>`(1, .5, -2), `<,>`(.5, 9/4+b, 5+3*b), `<,>`(-2, 5+3*b, 18+9*b+4*a)); b:= transpose(a); when exectute sheet dont translated values, there same input. matrix looks same input matrix plus function term. you can see picture in following link: why arent functions executed? meanwhile b:=a^+ doing right way , transposed matrix. other functions return function body instead needed values... if using 2d input mode (the default) space you've got between transpose , bracketed (b) interpreted multiplcation. rid of such space. also, either load package @ start of document like, with(linearalgebra): before calling transpose command package, or call it's full name like, linearalgebra:-transpose(b);
Read more