Questions tagged [oauth-2.0]

OAuth (Open Authorization) is an open protocol framework to allow secure API authorization in a simple and standardized way for desktop, mobile and web applications. OAuth 2.0 is the second version of the OAuth protocol.

0
votes
0answers
8 views

JavaFX fails to redirect to OAuth 2 grant

In my google chrome browser, the linked URL for the OAuth 2 grant works from this URL: https://temperlesergal.github.io/NuBot/discord/?, However, it will not redirect in WebView, or more accurately, ...
0
votes
0answers
9 views

How to get emailAddress from Linkedin using allauth in django?

I want to register users using Linkedin, to retrieve their name, last name and email. For that I'm using allauth on django. I can register the first and last name but I cannot automatically save the ...
0
votes
0answers
4 views

Spring Security OAuth - how to disable login page?

I want to secure my application with Spring Security, using OAuth 2. However, I don't want the server to redirect incoming unauthorized requests, but instead to respond with HTTP 401. Is it possible? ...
0
votes
0answers
3 views

how to auto sign out user after using “sign in with slack” with oauth2

after using oauth2 flow for slack ("Sign in with Slack") and making appropriate API calls, we need to make sure users are properly signed out of Slack as well, else, on a shared computer, subsequent ...
0
votes
0answers
5 views

How to fix “AttributeError: 'OAuth2ConsumerBlueprint' object has no attribute 'get'” error

I am trying to create an application which links the Basecamp API. I am using the flask-dance provided custom blueprint. https://flask-dance.readthedocs.io/en/latest/providers.html#module-flask_dance....
-1
votes
0answers
9 views

How to configure Oauth2 connection to Facebook

I am developing an oauth2 connection from between a symfony web app and facebook, and I am getting this error: The domain of this URL isn't included in the app's domains. To be able to load this URL,...
0
votes
0answers
8 views

Is the any way to get Google Docs OAuth 2.0. access token, which will exists longer than 3600 sec?

Usual solution is to use https://developers.google.com/oauthplayground, but it doesn't give long lived token. I also tried this approach, but had "invalid_grant" response.
0
votes
0answers
10 views

Imgurl oauth2: 403 Unauthorized when allowing access

I have succesfully create an oauth connection with Imgur. It works find when logged in with one account, but now I doesn't anymore. I open my application, and Imgur asks if I want to allow the ...
-1
votes
0answers
6 views

How to revoke Spring Oauth2 accessToken

I need to revoke the oauth2 accesss and refresh token once logged out from my spring boot application.The revokeToken() method of DefaultTokenServices class doesnt actually revoked my token as I could ...
-1
votes
0answers
11 views

Not able to inject custom userDetailsService in DaoAuthenticationProvider

Following is my Security config: I am using jwt token store @Configuration @EnableWebSecurity( debug = true ) public class SecurityConfig extends WebSecurityConfigurerAdapter { @Autowired ...
0
votes
0answers
8 views

Issues with verifying Google consent screen, getting “App isn't verified” message

I'm facing issues with overcoming the "App isn't verified" message and also the limit of 100 sign-ins. Have already filled in the consent screen verification form, but it hasn't been verified yet ...
0
votes
0answers
19 views

Relaying the incoming token downstream to other services

I'm trying to understand 100% how a Resource Server works, relaying the incoming token downstream to other services. I have a microservice architecture with spring boot eureka, with Bearer ...
1
vote
0answers
15 views

Organizing a secure channel between a Web app and a Native app

This question is kinda complimentary to "Share credentials between native app and web site". TL;TR: is there a secure way to share an OAuth2 access token or authorization code from a Web Browser app ...
0
votes
0answers
12 views

Why doesn't this code works in getting refresh code from refresh code in oAuth2 stex?

In this question, I managed to obtain an access code and refresh code from stex API Why do I have to specify the redirection URI when using authorization token to get access token in OAuth2? So I ...
0
votes
0answers
15 views

Why do I have to specify the redirection URI when using authorization token to get access token in OAuth2?

This code works I surf I got the code by surfing https://app.stex.com/oauth/authorize?response_type=code&client_id=144&scope=trade profile then I got a code. I put the code on my program ...
0
votes
0answers
17 views

Google books api for firebase authorized users

I'm building an android app to authorize users using firebase authentication an I want to add books api to search books should I generate api key for this app or use oAuth2 to generate authentication ...
-1
votes
0answers
8 views

Spring oauth2 sso redirect failed [on hold]

Spring oauth2 sso client successfully login but redirect callback url failed. Can you help me resovle the problem? Here error image: https://imgur.com/a/WkKmQt3
0
votes
0answers
23 views

How to login laravel server with azure ad dirctory account using api on iOS app

I am using laravel server for iOS app authentication. I gonna add azure AD to laravel project for iOS app. I have tried 'metrogistics/laravel-azure-ad-oauth'. that is working as well for web page. but ...
0
votes
0answers
9 views

Discord asks to re-authorize already authorized app

I'm trying to get login with discord going, and it works for the most part. The problem is this: Whenever i send the user to Authorize to https://discordapp.com/api/oauth2/authorize?client_id=[...
1
vote
0answers
22 views

How to get the access token from the redirect_uri?

I am creating a web based application and want to get data from Basecamp using their API through OAuth2. I have successfully redirected my page to this link my redirect_uri, but I couldnt get any ...
1
vote
2answers
26 views

Who issued the bearer token

My server gets a bearer token in the header like so: Authorization: Bearer <token>. Now I need to validate that token, and for that to happen, I need who issues the token. For example, a Google ...
0
votes
1answer
13 views

Is it possible to get custom attributes value in aws cognito on sign up?

I want the user to input the custom attributes on the sign up form as well. How do I do it? I couldn't find any documentation for this task. I have two standard and one custom attributes. I need all ...
0
votes
1answer
14 views

Implict grant for native apps

I have something to get clarified regarding the following. The "OAuth 2.0 for Native Apps" spec says, However, as the implicit flow cannot be protected by PKCE [RFC7636] (which is required in ...
0
votes
0answers
22 views

How to store Spring Boot OAuth2 logged in user in session?

I'm trying to implement Silent Authentication for my Spring Boot Authorization Server (created via @EnableAuthorizationServer) so that I can ask for new access tokens from my SPA. I figure that to do ...
0
votes
0answers
13 views

Integration of Bitbucket with Azure, gives invalid client_id error

I tried to link Azure Web App with Bitbucket through Deployment Center. But after clicking on Authorize and logging in to Bitbucket I get the following error : "Confirm access to your account ...
-1
votes
0answers
9 views

Python & OAuth-2.0 [on hold]

How to use Python to send and receive a json data to a web service? The web service uses OAuth 2.0. I tried to go through the docs but am having trouble understanding how to send the data & ...
0
votes
0answers
10 views

Is oauth2 always require user interaction?

I want to access some private API here https://apidocs.stex.com/ I've been using API for many exchanges. Usually, I have API key, API secret, and that's it. Now, an exchange called stex says that ...
0
votes
0answers
16 views

How should I use webclient for oauth 2.0?

I handled a lot of API from many exchanges. I want the API to work without user intervention. Usually, I wrote codes like this Dim timestamp = getEstimatedServerTimeStamp().ToString Dim domain ="...
0
votes
0answers
20 views

Authorization via launchWebAuthFlow within Chrome Extensions/Apps

I have a few questions for which I have been unable to find explicit answers to anywhere else. I have a chrome extension that I would like to access a secure api from. I have successfully setup the '...
0
votes
0answers
12 views

Not able to send mails using Nodemailer and access tokens obtained from Gmail

It works fine if I manually provide access tokens but those expire in 1 hour. So, whenever I try to do one of the following : skip giving access token in createTransport function provide expired ...
3
votes
1answer
23 views

How can I manually validate token I got from my custom authorization server by using jwt.io?

I am learning about OAuth2 and OpenID Connect by experimenting with ASP.NET Core and IdentityServer4. So far I created a protected API server, an authorization server and a client by following a ...
-1
votes
0answers
13 views

How can I use Client ID for OAuth 2 based authentication? [on hold]

I have OAuth2TokenStore.java from jitsi file But It show"Description Resource Path Location TypeGoogleAPIClientToken cannot be resolved to a variable" that project already add lib google-...
0
votes
0answers
18 views

AppAuth Android - Redirect uri not getting called

So basically to implement an oauth client I decided to use https://github.com/iainmcgin/AppAuth-Demo as a basis for my project and add an extra provider. The app works perfectly with google, facebook ...
1
vote
0answers
17 views

Can you authenticate a React Native app with a 'Regular Web App' auth0 application?

I am trying to set up auth0 authentication with my React Native app. The client has made the backend with ASP.NET, and set up a 'Regular Web App' application on auth0. I'm following the quickstart ...
1
vote
0answers
8 views

React Native auth0 'access_denied' 'unauthorized' error

I am trying to add auth0 authentication to my React Native app. I am following this quickstart guide: https://auth0.com/docs/quickstart/native/react-native I am connecting to a "Regular Web App" ...
1
vote
0answers
15 views

How to logout a user from Wordpress site who was logged in using oauth

My Site (mysite.com) uses Spring OAuth2 Client registration to Authenticate and Authorize a user using a Wordpress Site (thatsite.com), and after login with correct credentials, wordpress site ...
0
votes
0answers
9 views

How to validate Scopes for each controller in .Net core mvc Oauth2 bearer token

I have a .net core 2.2 app that exposes some Rest API, that must be accessed using a bearer token. I can validate the token Startup.cs/ConfigureServices services.AddAuthentication(...
0
votes
0answers
33 views

OpenIdDict (Code Flow) - Handling Access Token Expiration

I'm working on a refactor in a ASP.Net Core 2.1 application to swap from the Implicit flow using a SPA, to an Authorization Code flow using an MVC client app. Since we're using the OpenIDDict library,...
0
votes
1answer
26 views

How to use OAuth in JWT authorization mechanism

At my project I am using JWT to authorize users, but it works only with my own authorization, I need to make possible authorize using Google account, so I need to add Google OAuth 2 authorization, but ...
1
vote
1answer
25 views

How to use OAuth 2.0 correctly in SPA?

I'am working on an project where we have a Vue.js Frontend and a Microservices architecture for the backend hosted in Azure Service Fabric. We wan't to add an IdentityService for authentication using ...
0
votes
0answers
16 views

OAuth 2 client credentials token received in postman but not in server

anyone can help me as I'm stuck to get an tokken from: https://www.parcel2go.com/api/docs/articles/intro.html Example Token Request: POST /auth/connect/token HTTP/1.1 Host: sandbox.parcel2go.com ...
0
votes
0answers
12 views

Authenticate Node app to download captions via YouTube Data API

I'm writing a Node application to get captions for videos from a YouTube channel. I've downloaded credentials, got the YouTube Node quickstart sample working and successfully added code to get a list ...
0
votes
1answer
12 views

Using Implicit Grant flow with Reddit API from an SPA

When I redirect to https://www.reddit.com/api/v1/authorize?response_type=token&client_id=3JTVJFUn28MxFQ&state=RANDOMSTATEFORCONFIRMATION&redirect_uri=http%3A%2F%2Flocalhost%3A4200&...
0
votes
1answer
12 views

hwi_oauth can't connect to FOS_OAUTH_SERVER

I looked through several solutions with the centralised login service. My Situation is as following: Central Login under login.domain.tld Backend under backend.domain.tld Customer Service under: ...
2
votes
1answer
51 views

Keeping user logged in after refresh/using refresh token with Google OAuth2 in React app

I’m building a React app where a key part of the functionality is a user can sign into their Google account and then access a feed of their most recent Google Drive/Docs mentions and notifications. A ...
0
votes
3answers
63 views

Invalid Signature when generate bearer token

I am new to OAuth and I used this tutorial to generate access token from client app to target app. The code itself is working fine, but the access token I generated has invalid signature when I ...
0
votes
0answers
31 views

Embed Power BI report in Salesforce

I am following the Microsoft blog (link here - https://powerbi.microsoft.com/en-us/blog/embedding-a-power-bi-report-into-salesforce/) to embed a power bi report into a visual force page in salesforce. ...
1
vote
0answers
20 views

react native app auth plugin network error

I tried to create a react native app with OAuth login in my rails app. I have this react native setup const config = { issuer: 'http://app.domain.tld', clientId: '...
1
vote
1answer
89 views

implement phone authentication

I am trying to implement phone authentication in my asp.net core backend Apis, something like whatsapp. the flow is: user opens the mobile app if he isnt current user he can write his phone number ...
0
votes
0answers
24 views

actions on google, Oauth account Linking

I have been trying to connect an assistant action to my backend server I am using my own Oauth server and followed the instructions on https://developers.google.com/actions/identity/oauth2?oauth=...

http://mssss.yulina-kosm.ru