FAQ Database Discussion Community


Electron & ReactJS, Use BrowserWindow for GitHub oAuth authentication

oauth,callback,github-api,electron
I have set up github's Electron with ReactJs. So I got a BrowserWindow and a react app playing nicely in that window. What I'm trying to achieve is to get authenticated with GitHub. So when a user presses the Login with Github button, a new BrowserWindow opens and goes to...

Authentication in ASP.NET 5 (vNext)

asp.net,oauth,asp.net-5,asp.net-mvc-6
I have a traditional ASP.NET app that I want to move to ASP.NET 5 (vNext). I am doing this as a learning exercise. My current app uses Forms-based authentication. However, I would like to use OAuth. I was looking at the Security module and was curious what should be used...

Create OAuth Signature with HMAC-SHA1 Encryption returns HTTP 401

c#,.net,http,oauth,hmac
The Question Hello, I need to authenticate to an API wich needs OAuth encryption. I'm in the right direction but I am sure something is wrong with my signature base string. Since the HMACSHA1 Hash is based on a Key and BaseString, I get a wrong oauth_signature. OAuth Signing Process...

No Such Client Exception Spring Oauth2

java,spring,oauth,spring-security,oauth-2.0
I am trying to implement Spring Security OAuth2 using Java config. My usecase requires the use of password grant_type. I have configured this so far without the need for a web.xml and would prefer to keep it that way Versions I am using: Spring Framework: 4.1.6 Spring Security: 4.0.1 Spring...

How do i retrieve values (Message) and (Code) from the reply of twitter api?

php,oauth,twitter-oauth
I am using codebird to post update using php, that i am doing successfully until when i get this message as reply by oauth for failure object(stdClass)[2] public 'errors' => array (size=1) 0 => object(stdClass)[3] public 'code' => int 187 public 'message' => string 'Status is a duplicate.' (length=22) public...

Deploy to heroku without redirecting to localhost with passport callback

facebook,heroku,oauth,callback,passport-facebook
I've deployed an app to Heroku, however once you click 'log in with facebook', you are redirected to http://localhost:3000/#=. I've tried the following (the first is where it is at the moment): passport.use(new FacebookStrategy({ clientID: FACEBOOK_APP_ID, clientSecret: FACEBOOK_APP_SECRET, callbackURL: "http://localhost:3000/auth/facebook/callback" }, function(accessToken, refreshToken, profile, done) { process.nextTick(function () { return...

Twitter OAuth : Invalid or expired token [its NOT duplicate]

php,twitter,oauth,twitter-oauth
Before anyone goes in a hurry and mark this question as Duplicate, let me tell you that ITS NOT DUPLICATE I have already checked similar question like this, this, this and this, but those are all 2 years old and the library has been changed too much since then so...

Google OAuth on MVC5 ExternalLoginCallback?error=access_denied

oauth,asp.net-mvc-5,google-oauth
I have set up my Google OAuth And I have added the code into Startup.Auth.cs app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions() { // LRC ClientId = "xxxxxxxxx", ClientSecret = "xxxxx" //CallbackPath = new PathString("/signin-google") }); But after I chose a google account to log in, it redirected me to the login page again, I...

Authentication with OAuth and JWT but without OpenID Connect

session,authentication,oauth,authorization,openid-connect
I’m wondering if I really need OpenID Connect to provide authentication on top of OAuth2. It seems to me if I generate JWTs (JWE) as my access token and I store user claims, roles/permissions, etc. in the access token, then the OpenID Connect's id token isn't needed. Resource servers can...

How do I allow several Instagram authentications per user with OmniAuth?

ruby-on-rails,ruby,ruby-on-rails-4,oauth,instagram
I need to allow users to authenticate with 3 Instagram accounts. I'm developing on Ruby On Rails and I'm using Instagram OAuth. In my Devise configuration I add config.omniauth :instagram, ENV['INSTAGRAM_client'], ENV['INSTAGRAM_secret'], {:scope => 'basic'}. This is only for one authentication. My question is how to setup 2 more different...

OAuth HwioBundle, different socialNetWork

php,symfony2,oauth,hwioauthbundle
I work to projekt in Symfony wich have regisrtation HWIOBundle for different social network. If user enter for example linkedin and some time for github I has two user in database. Who knows how to do was one?

Linkedin Oauth Javascript authorization “uh oh!”

javascript,oauth,linkedin
I can't login on my app with Linkedin, i see modal linked dialog with "uh oh!" What to do? Why don't work linkedin Oauth? function onLinkedInLoad() { IN.Event.on(IN, "auth", function() {onLinkedInLogin();}); IN.Event.on(IN, "logout", function() {onLinkedInLogout();}); } function onLinkedInLogin() { IN.API.Profile("me") .fields(["id", "firstName", "lastName", "pictureUrl", "publicProfileUrl", "emailAddress"]) .result(function(result) { console.log(firstName); })...

Authenticating mobile app login using webservice using oauth connection

php,android,api,authentication,oauth
I have developed a website in PHP ( zend framework 2 ). It has user authentication to access user specific content and views which is only accessed by the user. Now I want to create a mobile app which has same functionailty as this. So I created a web service...

Issue exchanging LInkedIn javascript token to rest oauth token

oauth,linkedin
I am using the article located at https://developer-programs.linkedin.com/documents/exchange-jsapi-tokens-rest-api-oauth-tokens to exchange my Javascript access token to a REST OAuth token. After following the directions here, no matter what I seem to do, I only get a 400 Bad Request response back. The flow I use for Facebook and want to recreate...

OAuth 2.0 resource owner access token implementation

php,authentication,oauth,oauth-2.0
I've read through RFC6749 for OAuth 2.0 as well as quite a few SO questions and blog posts but I'm still unclear on how to implement some of the things. Currently, users log in through a form on a web page and use the application which makes database calls to...

Django-oauth is sending and receiving data without access token in ionic app?

android,django,oauth,ionic,django-authentication
I am using Django-oauth-toolkit for social authentication in ionic android app. First i get token from social auth plugin then i send it to django. Django-oauth-toolkit generates user and send me access token and refresh token back. After that when i send GET request for user related data (without sending...

Laravel 5 Session variables not persisting after redirects Twitter OAuth

php,session,laravel,twitter,oauth
Using Codebird, I request oauth token here $reply = $cb->oauth_requestToken(array( 'oauth_callback' => 'http://localhost/laravel/public/callback' )); print_r($reply); $cb->setToken($reply->oauth_token, $reply->oauth_token_secret); Session::put('oauth_token', $reply->oauth_token); Session::put('oauth_token_secret', $reply->oauth_token_secret); Session::put('oauth_verify', true); Session::save(); $auth_url = $cb->oauth_authorize(); header('Location: ' . $auth_url); die(); Variables are all correctly put into...

Does “authenticate with facebook” require a facebook-server to send data directly to my server?

facebook,facebook-graph-api,oauth,oauth-2.0
I am building a "authenticate with facebook" or "login with facebook" function for a website on my development server. The development-server is a VM running on my computer. I have set up my own DNS-server so that i can access the website with: anydomainname.de - which of course only works...

Google OAuth service redirects to URL with a # sign at the end

php,url,oauth,google-oauth,fragment-identifier
When the user is redirected to https://accounts.google.com/o/oauth2/auth?response_type=code&client_id=[clientid]&redirect_uri=http://example.com/googleauth&scope=email by our "Sign In with Google" button, the response's Location header that causes the redirection back to the site has a # symbol at the end: Response headers:location: http://example.com/googleauth?code=[code]# It certainly does not break the site's funcionality, but I'd like to get rid...

Google api oauth prolog

oauth,google-api,prolog,swi-prolog
I am trying to connect to google oauth. I have used javascript to make a connection to google and get a code, I then understand I need to exchange this code for a token as detailed here: https://developers.google.com/identity/protocols/OAuth2WebServer The code I have is : :- use_module(library(http/http_dispatch)). :- use_module(library(http/http_error)). :- use_module(library(http/html_write))....

jshint and variable names out of my control

javascript,angularjs,oauth,jshint
I'm handling an oauth response from twitter in an angular page that reads the parameter like this: var oauthToken = $location.search().oauth_token; Jshint will complain because line 13 col 0 Identifier 'oauth_token' is not in camel case. Alternatively I can write it as var oauthToken = $location.search()['oauth_token']; But then jshint will...

Google Sign In issue asking to update to latest

oauth,google-plus-signin,google-signin
All, I am trying to access Google Sign in API today. But it said below message and stopped signing with the google account. This has been working till yesterday without any issues. Is there any announcement from Google about this? " A new version of GoogleSignIn is available: https://cocoapods.org/pods/GoogleSignIn"...

POSTing with JSON using npm request

node.js,oauth,request
How would one do the following with the request npm module? curl https://todoist.com/oauth/access_token \ -d client_id=0123456789abcdef \ -d client_secret=secret \ -d code=abcdef \ -d redirect_uri=https://example.com I've tried doing this: var body = JSON.stringify({ client_id: '0123456789abcdef', client_secret: 'secret', code: 'abcdef' }); var postBody = { url: 'https://todoist.com/oauth/access_token', body: body, headers: {...

Azure Active Directory Login: Web App Permissions, User Consent not triggered

azure,oauth,active-directory,azure-active-directory
I have currently set up a AAD instance and I am authenticating my users against it via my web app, and it’s working great. When I added and configured the application on AAD, I added the required Application and Delegated Permissions to access the Office365 Calendar API. However, the only...

how to specify the redirect url for the google sign-in button

oauth
i was wondering how to specify the redirect url for a google sign-in button, here is the button: <div class="g-signin2" data-onsuccess="onSignIn" data-scope="https://www.googleapis.com/auth/plus.login https://www.googleapis.com/auth/userinfo.email https://www.googleapis.com/auth/userinfo.profile" data-requestvisibleactions="http://schemas.google.com/AddActivity" data-accesstype="offline" data-cookiepolicy="single_host_origin"></div> ...

Ouath2 Google Meteor

meteor,oauth,meteor-accounts,service-accounts
Im trying to connect to google using the Accounts-google package. I have already install the 2 packages. meteor add service-configuration meteor add accounts-google This is how my server/config.js file looks. ServiceConfiguration.configurations.upsert( { service: "google" }, { $set: { clientId: "xxxxxxxx", loginStyle: "popup", secret: "xxxxx" } } ); My setup on...

IOS LinkedIn API error

ios,oauth,linkedin
I am trying to implement this LinkedIn library in my project, but it seems that I get an error while I try to present the LinkedIn screen: Authorization failed LinkedIn1: Error Domain=LIALinkedInERROR Code=1 "The operation couldn’t be completed. (LIALinkedInERROR error 1.)" You can find the code that I am using...

What is the simplest example of Spring OAuth2 with Java configuration?

java,spring,oauth,spring-security,oauth-2.0
I have recently built a REST API in Spring which I am consuming with a .Net C# client. At the moment there is no security so I would like to implement OAuth2. I am going to be the only user of my REST API so I don't need something complicated....

Accessing Calendar, Mail and Contacts of an OAuthenticated user

oauth,ews,azure-active-directory
I configured an application on AzureAd to be multi-tenant, I chose to require all the permissions for Windows Azure Active Directory and Office 365 Exchange Online. I can get a user to grant permissions, get access tokens, refresh them, OAuth works for me. I always used the "common" keyword instead...

Spring Oauth2 RemoteTokenServices error on extractAuthentication

java,spring,oauth,spring-security,spring-security-oauth2
I have a resource server and an auth server. On resource request it verifies the received access_token with the auth server on a /oauth/check_token endpoint. This gives a response that makes my request crash. The response is sent as: Written [{exp=1433335640, scope=[read, write], authorities=[ROLE_USER], client_id=client-w-s}] as "application/json;charset=UTF-8" using [org.springfr[email protected]58a88f5a] When...

How to get questions using StackOverflow API V 2.2 in PHP

php,oauth,stackexchange-api
I am working on a project and want to get questions from stack overflow using Stack Overflow API. I searched the way how to achieve the same here: how to get a list of questions from stackoverflow API based on search query? Stack Overflow API access with PHP How to...

Google API Exception “invalid_grant” in DEVs GlassFish but not in Local

java,oauth,google-api,glassfish
I'm working using OAuth 2.0 to authenticate to a Google's API and everything works just fine in my local GlassFish. The problem begins when I'm deploying to the DEV's GlassFish, which throws me the following exception: com.google.api.client.auth.oauth2.TokenResponseException: 400 Bad Request { "error" : "invalid_grant" } This is my code: transport...

How do I assign Instagram redirect uri in python social auth? [duplicate]

oauth,python-social-auth
This question is an exact duplicate of: 'Redirect URI does not match registered redirect URI' using Python Social Auth 1 answer I am using python-social-auth and trying to implement login with Instagram. In the documentation they tell only to fill the following values: SOCIAL_AUTH_INSTAGRAM_KEY = '' SOCIAL_AUTH_INSTAGRAM_SECRET = ''...

PingFederate OAuth validate access token using Apache Integration Kit

oauth,pingfederate
We are using Apache integration kit (modpf) for integrating web application with PingFederate as SP. We want to use PingFederate as OAuth server as well. Can we use same integration kit to validate access token generated by OAuth server? or are there any other libraries to do it? One such...

managed paypal accounts with least friction?

python,paypal,oauth,payment
I'd like to be able to pay the users of my site using PayPal Mass Payment. I think this is pretty straightforward if they have a PayPal account. However, if they do not have a PayPal account, is there any way to have them sign up through my site, without...

Spotify Web API - Client Credentials - Accessing a users playlists

php,api,oauth,spotify
I'm trying to access users playlist tracks by using the client credentials flow. Spotify getting playlist documentation: https://developer.spotify.com/web-api/get-playlists-tracks/ Spotify getting client credentials documentation: https://developer.spotify.com/web-api/authorization-guide/ First question, is it possible to get a users playlist tracks using client credentials flow? I'm using this flow since I'm unable to pop up a...

Sequelizejs error when authenticating with passportjs(facebook)

node.js,facebook,oauth,passport.js,sequelize.js
I am trying to authenticate with facebook OAuth thru passport.js but sequelizejs is throwing the following error: server-0 (err): Unhandled rejection SequelizeDatabaseError: column "value" does not exist My user model looks like this: module.exports = function(sequelize, DataTypes) { var User = sequelize.define("User", { username: { type: DataTypes.STRING, allowNull: true, validate:...

When to refresh token?

rest,authentication,oauth,lync,ucwa
I have application that continuously running in background. The app uses UCWA REST api. After authentication I get OAuth token and some expiration time. Authentication docs say "The lifetime of a token is eight (8) hours for authenticated users. The client application should monitor the expiration time and refresh the...

Using an OpenID Connect server to authenticate between two applications [closed]

java,oauth,openid,connect
Okay, sorry if I don't convey the question properly, but here's what I'm trying to do Background: Spring REST application that displays privacy-sensitive data. ApplicationX that wants to retrieve said data. OPENID Connect server. ApplicationX uses the OpenID Connect server to authenticate and get a token. Question How can I...

gspread/OAuth2: authenticated default gmail account (used early in ClientLogin)

oauth,oauth-2.0,google-oauth,google-spreadsheet-api,gspread
I have been using gspread (authenticated via ClientLogin) for a last year. Now I would like to use OAuth2. I've followed tutorial from gspread site: http://gspread.readthedocs.org/en/latest/oauth2.html The problem is that this method creates new "Email address" (in console.developers.google) which doesn't have an access to spreadsheets - all spreadsheets should be...

Securing Symfony RESTful API consumed by angular front?

angularjs,api,symfony2,oauth,wsse
I have set up a Symfony based API which is being used by an Angular front end which is totally dependent of it (User registration included) I have read multiple threads recommending using WSSE or FOSOAuthServerBundle but I'm not sure about the best method ? If I understood correctly, WSSE...

How to wrap oAuth headers in clj-http?

oauth,clojure,twitter-oauth,clj-http
I'm trying to post a twitter status update with clojure... but this probably really is a question about oAuth headers, and using it through the wonderful clj-http library. I've used clj-http before for basic-auth and other type of headers and it was fairly straightforward. The Authorization: Bearer ... was a...

RESTful API: how to securely store bearer API tokens?

api,rest,github,oauth,token
I am building a RESTful API. The only problem I have is how to do the authentication, since I want a stateless approach where the only information the server has is in the request itself. So I thought I would look how the big boys do it. I see most...

OAuth2 “client credentials” grant: remote IP check?

oauth,oauth-2.0
I'm developing an API which only needs to be accessed by servers, as opposed to specific, human users. I've been using the client credentials grant which, if I'm not mistaken, is appropriate for this use case. So the remote websites/apps, after registering their corresponding OAuth2 clients, are simply requesting an...

Azure AD OAuth Access Token Request ::: 400 - Bad Request

php,azure,oauth,office365
I have a php web app built upon Laravel 5 / Socialite, where I am trying to implement a SSO solution with windows azure AD OAuth flow, but I am getting a generic "400 Bad Request Error" on the second OAuth request for an Access Token. The first request to...

How do I customize and use Phirehose functions?

php,twitter,oauth,stream,phirehose
I'm trying to put in a check for Phirehose to stop running after 10 seconds or 100 tweets...basically, I want to be able to stop the script. I was told I could customize the statusUpdate() function or the heartBeat() function, but I'm uncertain how to do that. Right now, I'm...

Google API OAuth 2.0 Service Account C# First time vs every day use

c#,oauth,google-api,service-accounts
Google API OAuth 2.0 servcie Account C# ( drive api) I am only targeting ONE Service Account. I am looking in authenticating to a service account. following this example: Google example As far I can understand, the token is permanent not 1h like other authentication type. Yet there is no...

[OAuth2 authorization server]refresh token's expire time need different with access token?

asp.net,oauth,oauth-2.0,owin
I'm learning OAuth2 via this tutorial, then I found refresh token's expire time is the same as access token, is this correct?

Jira Oauth: 401 Unauthorized in PHP oauth_problem=“signature_invalid”

php,oauth,jira,jira-rest-api
I am developing some tools for login in Jira by using Oauth. I am using sample tutorial i.e. https://bitbucket.org/atlassian_tutorial/atlassian-oauth-examples/src/d625161454d1ca97b4515c6147b093fac9a68f7e/php/?at=default In response it shows [response] HTTP/1.1 401 Unauthorized Server: Apache-Coyote/1.1 WWW-Authenticate: OAuth realm="http%3A%2F%2F10.36.4.32", OAuth realm="http%3A%2F%2F10.36.4.32",...

Mule OAuth Provider Accesstoken expiry time

oauth,mule
I am using Mule enterprise edition and struggling to find the default expiry time for tokens issued using the Mule OAuth provider. So if my provider configuration is like the below, for how long will the issued access token be valid ? 12 hours/24 hours or something else ? <oauth2-provider:config...

why android g+ revokeAccessAndDisconnect still keep my g+ permission

android,oauth,google-plus
I am using G+ login for my app.I have a option for user to disconnect g+ account. case R.id.action_disconnect: disconnectDialog = new ProgressDialog(this); disconnectDialog.setMessage(getResources().getString(R.string.disconnect_dialog)); disconnectDialog.show(); googleApiClient = buildGoogleApiClient(); googleApiClient.connect(); private GoogleApiClient buildGoogleApiClient() { return new GoogleApiClient.Builder(this) .addConnectionCallbacks(this) .addOnConnectionFailedListener(this) .addApi(Plus.API,...

Customizing GET Response Using Python Requests Module

python,oauth,get,python-requests
I'm a newbie to Python here, so bear with me... Trying to experiment making a simple oAuth call to Instagram API. After you register your application, you get your client ID, client secret, etc, the first step in the oAuth process is to direct the user to this authorization URL:...

Tumblr Feed using AngularJS and OAuth.io

angularjs,oauth,tumblr,oauth.io
I created an AngularJS app that displays my Tumblr dashboard. The issue I have is that there is not any data being returned in the browser. However, if I refresh the page and immediately navigate to a different tab before the page completes loading, the data will be there when...

How to share developer account at LinkedIn

oauth,oauth-2.0,linkedin
I have a developer account at LinkedIn. My question is if it's possible to connect other developers to it? We are three developers in our company that is working on the same app but on different platforms. I want them to have full access of the app info site, but...

Linkedin API - get full data

php,api,oauth,linkedin
I try to make an script to get data from LINKEDIN, i am able to get many of information about profile like name, mail, phone, picture url and so on, unfortunately how ever I try I can't get to informations like work experience and many other. My Request looks like:...

Python gdata API returning empty data with oauth2

python,google-app-engine,oauth
A while back I wrote a GAE application that scrapes some information from a google spreadsheet using the gdata-python-client library. Everything has been working fine until recently (in the last week) when Google finally removed the ClientLogin method. They now only allow oauth2 for authentication. This has completely broken my...

Need help referencing PECL OAuth from a Laravel 5 app

php,laravel,oauth,laravel-5
I have a Laravel 5 application where I am building a custom OAuth interface. Everything is working well, but I cannot figure out how to reference the PECL OAuth package which is installed on the server. I'm sure its something pretty simple, but I can't figure it out and Google...

Using Promise.all() for multiple http/oauth queries

javascript,oauth,promise
I'm trying to wait for the output of two OAuth calls to an API, and I'm having trouble retrieving the data from those calls. If I use Promise.all(call1,call2).then() I am getting information about the request object. First, here's the setup for the fitbit_oauth object: var fitbit_oauth = new OAuth.OAuth( 'https://api.fitbit.com/oauth/request_token',...

OVH API Authentication with powershell

powershell,oauth,ovh
I'm trying to get a list of dedicated servers hosted at OVH using powershell, via their new spangly API. But I'm a bit stuck at generating the authentication signature. I think I followed the steps here: https://api.ovh.com/g934.first_step_with_api but I guess I messed something up. My script so far looks like...

OAuthorization through app or web api

android,asp.net-web-api,oauth
My question is pretty straightforward but I am pretty sure it's just a lack of understanding on my part. Background: I have a prototype native android app as well as an asp.net Web API and I want to implement OAuthorization so that users can login through google+, Facebook, or Twitter....

invalid_grant error while getting access token via OAuth 2.0

python,python-2.7,oauth,oauth-2.0
There is a python app uses Health Graph API # -*- coding: utf-8 -*- from django.shortcuts import render_to_response, redirect from main.settings import CLIENT_ID, CLIENT_SECRET, RUNKEEPER_LOGIN_URL, ACCESS_TOKEN_URL import requests def index(request): return render_to_response('index.html') def login(request): code = request.GET['code'] post_data = {'grant_type': 'authorization_code', 'code': code, 'client_id': CLIENT_ID, 'client_secret': CLIENT_SECRET, 'redirect_uri': 'http://127.0.0.1:8000/welcome/'} req...

How to set new session id after getting access token in OAuth 2.0

oauth,salesforce,access-token
I am developing an app for salesforce. For authentication I am using the web server flow. In salesforce OAuth implementation the session id is the same as access token. When I get the new access token (through refresh token method), what's the proper method to pass it to the client....

Is using a SSO Assertion (JWT or SAML) For OAuth Assertion Flow Common?

oauth,oauth-2.0,single-sign-on,saml,jwt
I'm working on a set of systems that are exposing REST APIs that are authenticated using OAuth 2. Various of these systems have their own indpendant sets of user accounts, there is no common notion of a user identifier across all the systems. For interactive usage we already have a...

Retrieve access token for Yahoo API using OAuth 2.0 and Python requests

python,api,oauth,python-requests,yahoo-api
I am trying to retrieve the access token for the Yahoo API, using the explicit grant flow as described in this document: https://developer.yahoo.com/oauth2/guide/flows_authcode Everything is fine until Step 4: Exchange authorization code for Access Token I wrote the following python script to retrieve the code: import urllib2 import requests import...

How can I instantiate Ruby's RestClient?

ruby,rest,oauth,rest-client
I need to get 2 different 'clients' for testing purposes(user/agent e-wallet mobile apps): 1 for user client 1 for agent client Both of these clients should be signed with ouath headers. RestClient provide #before_execution_proc for such purposes, but this won't work for 2 different sessions at once. I've tried solve...

Authentication Issue with WP-API and Net::Http

ruby,wordpress,oauth,wordpress-plugin,net-http
I am new to Wordpress. I want to access WP-API to create a post using REST API. I am unable to perform POST, PUT and Delete request. Though I can retrieve data only. I wrote a ruby script for this. Below is my code snippet. require 'net/http' require 'net/http/oauth' require...

What does “offline” access in OAuth mean?

oauth,google-oauth,google-oauth2
What exactly does the word "offline" mean with regard to the offline access granted by an OAuth server? Does it mean that the resource server will return data about the user even when the user is logged out of the third-party application or when the user is logged out of...

Unable to obtain token using Abraham's TwitterOAuth for PHP; HTTP 500 returned

php,twitter,oauth,twitter-oauth
I am attempting to use @abraham's TwitterOAuth 0.5.3 library for PHP, but when I make a request to request a token for the 3-legged authorization, I receive an HTTP 500 as a response. Here is how I have the code set up in PHP: <?php /* Start session and load...

How to debug a script put in module's config?

angularjs,oauth
My AngularJS project is working with an API. This API provides authentication tokens (Oauth): an access_token and a refresh_token. Everytime an AngularJS request to the API returns a 401 error, it means that the access_token has expired and it needs to be refreshed by sending the refresh_token to a specific...

Dotnet open auth with Facebook and Email/Password login with aspnet_membership tables

oauth,asp.net-membership,dotnetopenauth
I'm building my first mobile app in which users can login. My app talks to webservices on my site's backend. Users can login/register via either Facebook or an email/password combination In both cases (upon registration) I add user data to the aspnet_membership tables, in case of a Facebook registration the...

how to access end user context on resource server

api,security,oauth,openid
I have an API management implementation as follows. End User <--> Web App <--> API Server Gateway <--> API Resource Server I use OAuth grant_type=code to authenticate the user credentials and then access API Resource using the tokens. As API Provider (resource developer), I need to access the end user...

Why isn't my Azure Website accepting OAuth tokens?

azure,oauth,claims-based-identity,azure-active-directory
I want my application to accept OAuth tokens when hosted using Azure Websites. I have the following: web.config of web app <appSettings> <add key="ida:Realm" value="https://example.com/development" /> <add key="ida:AudienceUri" value="https://example.com/development" /> <add key="ida:Tenant" value="example.com" /> </appSettings> Startup.cs of web app using System; using System.Collections.Generic; using System.Linq; using System.Web; using Microsoft.AspNet.SignalR; using...

Is it possible to use service account with google cloud print [duplicate]

c#,oauth,google-api,google-cloud-print
This question already has an answer here: Share printer with Google API Service Account 1 answer I have an application that uses google cloud print. The printers are registered on a company google account. I have to change the application to use oAuth now and since the application runs...

angular-ui replace'?' with '#' on redirect from facebook oauth

angularjs,facebook,facebook-graph-api,oauth,angular-ui-router
I'm implementing facebook ouath login in angularjs without SDK. Everything works as expected except one thing. When user click on login button, which redirects to facebook login page, after successfull login, facebook fires redirect_uri URL, and user is again in the app. Problem is, that ui-router (probably) replaces '?' with...

Access a Google Drive spreadsheet in Ruby on Rails

ruby-on-rails,ruby,oauth,google-api
I'm trying to get the content of a Google Drive spreadsheet, but I can't seem to find a gem that can do it easily. I tried google-drive-ruby, but it involves a step in which I have to get an auth token from Google's website. This is not very helpful, as...

Symfony2 rest api security configuration (Trying to understand)

angularjs,api,rest,symfony2,oauth
I', working on a rest api with Symfony2 (FOSRestBundle, FOSOauthBundle, JMSBundle) and I do not understand (and don't find) how I'm supposed to setup my angularjs app to access my api resources. I'm a bit confused about the security part and have a lot of question. 1- I prepared the...

getting 401 to access http://localhost:8080/oauth/token

java,javascript,angularjs,oauth,spring-boot
I am hitting one end point from my angularjs client app to login when I am doing that one I am getting the following ERROR in browser console OPTIONS http://localhost:8080/oauth/token XMLHttpRequest cannot load http://localhost:8080/oauth/token. Invalid HTTP status code 401 It's server side code to accept CORS from the client. @Component...

Bearer token in MVC controller to access Web API

asp.net-web-api,oauth,oauth-2.0,bearer-token
I have two projects: MVC, Web Api In the Web API project I am using bearer token authentication. This token expires after 24 hours. In my MVC project I'd like to call the Web api project via MVC controller (server to server). What's the best way to: Get a token...

Microsoft Graph API Accessing basic info of a user that is outside tenancy

oauth,ms-office,ews,multi-tenant,azure-active-directory
I am developing a multi-tenant web app managing the mail, contacts and calendar of users. On the AzureAd management portal, I registered my app as multi-tenant and I manage to get OAuth tokens for both people out and inside my tenancy, replacing the tennantId by "common" when querying the Authentication...

Does Facebook mobile app login return the Facebook profile id (and email address)?

android,facebook,oauth,facebook-login
I want to allow users to login via Facebook within my Android app. I then match that Facebook login to an account with the Facebook profile Id in my database, which I've stored if the user has already logged in before via my website in his desktop browser. So if...

How to implement android RESTful client with Robospice (or something like this) + OAuth?

android,rest,oauth,robospice
How to implement Robospice (or something like this) + OAuth? Maybe someone can share link to examples of good practices for creating RESTful android clients? I can't figure the architecture of RESTful app with OAuth, which cover all problems with activity's lifecycle. Of course I know about Virgil Dobjanschi "Google...

trouble using AFOAuth2manager to generate HTTPSOauthToken

ios,oauth,woocommerce,afoauth2client
I'm building an iOS app where costumers can login (with the same website username and password) into the app and purchase items from the app. The rest api for woo commerce says to use HTTP Basic Auth by providing the API Consumer Key as the username and the API Consumer...

Using 3scale with shared OAuth authorisation server

api,oauth,openid-connect,3scale
I have a website, mywebsite.com, in which users can log in. Login is handled by redirecting unauthenticated sessions to an SSO provider on ssologin.com, which validates credentials and then redirects back to mywebsite.com with an access token so it can create a local session. The website is a single page...

Configure the authorization server endpoint

c#,asp.net,oauth,asp.net-identity,asp.net-5
Question How do we use a bearer token with ASP.NET 5 using a username and password flow? For our scenario, we want to let a user register and login using AJAX calls without needing to use an external login. To do this, we need to have an authorization server endpoint....

Facebook not always asking user for extended permissions

facebook,facebook-graph-api,oauth,permissions
I'm trying to get access_token with extended permissions using Facebook SDK for .NET. I do a redirect from my website to oauth login dialog with url http://www.facebook.com/dialog/oauth?client_id={my client id}&redirect_uri={my redirect url}&scope=manage_pages,publish_pages,publish_actions&state={guid state} (I checked in the browser, the scope parameter exists in the URL). And for some users it asks...

authorization code for Github API used in R

r,oauth
I am trying Access the API to get information on http://github.com. I created in application in github (in developer application) for this URL and try to access thru R using httr libraries. The following is the code library(httr) oauth_endpoints("github") myapp <- oauth_app("github",key = "#####################",secret = "########################" ) (key was replaced...

Github OAuth flow with Express and Ember.js

node.js,ember.js,express,oauth,github-api
I'm pretty new to Express.js and the Github OAuth api and running into a wall. The flow I've got going is, the user clicks on a link from the Ember.js application which points to a route on the Express server. Which redirects to the Github oauth route. router.route('/oauth') .get(function(req, res){...

Null pointer exception using scribe oauth facebook

java,facebook,spring-mvc,oauth
Hello guys im trying to implement oauth 2.0 to get facebook access token with scribe and keep getting a null pointer exception. The line belows keeps getting a null pointer exception: String authorizationUrl = oAuthService.getAuthorizaionUrl(Token.Empty())+"&"+STATE+"="+state; Below is my full code @Controller public class HomeController { private static final String STATE...

Apache Oltu Github integration example with Spring MVC

oauth,oauth-2.0,spring-security-oauth2,oltu
I'm developing an "Apache Oltu Spring MVC Github" integration example. In this example I will be sending "App ID" and "Secret" to get the "access_token" in order to access the protected resources like "Gist", "user" etc. So first step is to create / register the "App" using https://github.com/settings/applications/new. Once you...

TypeError: __repr__ returned non-string (type bytes)

python,python-3.x,oauth,ipython
I am trying to access the Discogs API using their Python client library. Here is a minimal example of my attempts to interact with the Discogs API: from SensitiveInformation.discogs_application_info import provide_discogs_auth, provide_verifier import discogs_client discogs_consumer_key, discogs_consumer_secret = provide_discogs_auth() discogs = discogs_client.Client(user_agent="ThoughfulMachineLearning", consumer_key=discogs_consumer_key, consumer_secret=discogs_consumer_secret) discogs_auth_url = discogs.get_authorize_url()...

How to remove OAUTH_PROVIDERS in Spree Social plugin

ruby-on-rails,oauth,spree,class-eval,spree-auth-devise
I've been reading through the SpreeSocial documentation here. I can't figure out how to remove providers through the config. I've tried to just pop the most recent provider off off of the list but that's not working. SpreeSocial::OAUTH_PROVIDERS.pop I managed to make the 'Sign in with LinkedIn' appear in the...

Twitter iOS User Login

ios,twitter,login,oauth
I've implemented Twitter Login in my iOS app with the following tutorial: https://dev.twitter.com/twitter-kit/ios/twitter-login But after I chose a Twitter account when I log in the first time, the app always defaults to this account. I would like to enable users with multiple accounts to select the Twitter account they'd like...

OAuthException: No token available when using Gunicorn and Flask

python,oauth,flask,gunicorn,digital-ocean
I've been developing a small website locally that uses Facebook as the primary login method and it works perfectly. However, when I deployed it to my Digital Ocean droplet using Gunicorn I get this error: [2015-05-05 09:15:15 +0000] [1561] [ERROR] Error handling request Traceback (most recent call last): File "/usr/local/lib/python2.7/dist-packages/gunicorn/workers/sync.py",...

Can I associate a user's account with an action to the drive API?

javascript,oauth,google-drive-sdk,google-spreadsheet,google-oauth
We're looking to make a little webapp to manage our week-long nerf war (humans vs zombies to be precise), and we're thinking about how easy it would be to have Google Sheets be our only backend, and our frontend be entirely javascript/html/css. Let's say there's two actions that can be...

Cross-Domain OAuth… how to get response?

javascript,google-chrome-extension,oauth,cors
I'm creating a Chrome Extension which will interact with a particular popular website. It injects html into the site which adds new features. Parts of these features depend on the user being logged in, and in order to get that logged in user information, we need to to authenticate the...

Twitter's live streaming API unauthorized(android)

android,twitter,oauth,twitter-streaming-api
I found this old android example code that can filter tweets from Twitter's live streaming API according to the input of user, but the problem is that it uses the basic authorization. Obviously it wouldn't work and I got the "401 unauthorized" error. Here is the original code: package com.teleknesis.android.twitter.livestream;...

How do I Login to WeldPad Using FB user?

javascript,oauth,polymer
I create a Website using Polymer and WeldPad. How do I enable the users to login using FB (oAuth)?

Android OAuth implementation makes receiving share activity stop

android,android-activity,oauth,android-sharing
I have a problem with a activity where onStop breaks my OAuth authentication process. First a small explanation about the context of my app: I have this activity (lets call it the receiveSharedDataActivity) which handles incoming data which is being send from other apps. This activity is made using the...

Providing login_hint option for Google Oauth2 redirect

oauth,google-api,google-oauth
I'm passing in login_hint=1 option as part of Oauth2 request query string but this doesn't appear when I receive a callback from Google Oauth2 after accepting it. I'm only getting: google/oauth2callback?code=4/vadsdaalijfqwo8fdjqojcxadassddsa# I was expecting 1 (which is user id) to come back as part of callback. How do I make...

ASP.NET Web API social authentication for Web and Mobile

c#,android,asp.net,asp.net-web-api,oauth
My question is kind of complex so bare with me as I try to lay it out nicely what I am struggling with. Goal Have an ASP.NET website that lets users register & sign-in via Username/Password or Social (Facebook, Twitter, Google, etc) that also has an API. This API needs...