tag:blogger.com,1999:blog-11300808.post4469479753919408749..comments2026-04-16T00:24:47.622-07:00Mike Marchakhttp://www.blogger.com/profile/08067736591419106914noreply@blogger.comBlogger28125tag:blogger.com,1999:blog-11300808.post-82189262723036987472011-12-12T03:06:28.945-08:002011-12-12T03:06:28.945-08:00Hello.<br />Its possible to convert a google cookie-based session to the oauth2 token?<br />If i have the session cookies, can i get the token?<br />Thanks!Thomashttps://www.blogger.com/profile/17402890556608992527noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-76485416400183057572011-11-30T15:53:08.014-08:002011-11-30T15:53:08.014-08:00@Andrew: I have a similar request as @srimonti. I just need to validate the user and give them access to our Hosted Domain apps resources, but without the whole confirm/approve process. <br /><br />When will this be available through oAuth?<br /><br />Thanks!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-11300808.post-52988733477176027262011-09-16T07:56:35.085-07:002011-09-16T07:56:35.085-07:00hiii i dont know where to post but i am posting here please help ... when i try to create clientid by using redirect uris i am getting error of invalid. i am giving this uri<br /><br />http://myserver/directory/gplus/Billhttps://www.blogger.com/profile/06666430045978526213noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-29908514917974282592011-05-08T09:26:27.722-07:002011-05-08T09:26:27.722-07:00Is it possible to use OAuth 2.0 + OpenID for the hybrid protocol?<br /><br />From the request parameters and examples listed here http://code.google.com/apis/accounts/docs/OpenID.html#oauth, it seems the hybrid only supports OAuth 1.0. (openid.oauth.consumer expects consumer key, and there is no client_id)<br /><br />Am I wrong? Please tell me I&#39;m wrong.<br /><br />@Andrew: any update on when oauth 2.0 will provide basic user info by default? All I need is something to uniquely identify the users logging in, doesn&#39;t even have to be access to user&#39;s email/username.srimontihttps://www.blogger.com/profile/13118017534726023479noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-79175008946626721132011-05-08T07:24:15.522-07:002011-05-08T07:24:15.522-07:00Is it possible to use OAuth 2.0 + OpenID for the hybrid protocol?<br /><br />From the request parameters and examples listed here http://code.google.com/apis/accounts/docs/OpenID.html#oauth, it seems the hybrid only supports OAuth 1.0. (openid.oauth.consumer expects consumer key, and there is no client_id)<br /><br />Am I wrong? Please tell me I&#39;m wrong.<br /><br />@Andrew: any update on when oauth 2.0 will provide basic user info by default? All I need is something to uniquely identify the users logging in, doesn&#39;t even have to be access to email/username.<br /><br />Right now it seems better to have my own login system, which I was hoping to avoid, and use oauth 2.0 for google api access only when needed.srimontihttps://www.blogger.com/profile/13118017534726023479noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-54515142031878912802011-05-03T17:43:20.724-07:002011-05-03T17:43:20.724-07:00How to I register an application to use Blogger Oauth2 api? Where is the url to register my application? The one I found here https://code.google.com/apis/console/<br />does not include Blogger as one of the available services.Lampcmshttps://www.blogger.com/profile/05346041492389394195noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-19873785065363822992011-04-28T13:54:18.573-07:002011-04-28T13:54:18.573-07:00omarenm, can you please make sure the client is registered as an &quot;Installed application&quot;?Mariushttps://www.blogger.com/profile/09850396547441903353noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-49023207888415262832011-04-21T09:09:11.901-07:002011-04-21T09:09:11.901-07:00Its not working for installed APP, if I set redirect_uri=urn:ietf:wg:oauth:2.0:oob i get a redirect mismacth error this happens when i set the same parameter in blank on the api console or when i put any url and it shows an error when i try to set it to urn:ietf:wg:oauth:2.0:oobomarenmhttps://www.blogger.com/profile/12430828727473619096noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-2308654330458003192011-03-17T12:31:08.648-07:002011-03-17T12:31:08.648-07:00Speaking of a PHP library, it&#39;d be nice if there were a simple sample open-source web app example, too.Andrew Rabonhttps://www.blogger.com/profile/15380851188492853560noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-31557795983940623182011-03-17T12:28:16.801-07:002011-03-17T12:28:16.801-07:00@Andrew<br />Is there an eta on the PHP library release?<br />Thanks sapper!Christopherhttps://www.blogger.com/profile/11542533028146086554noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-80086796339399135342011-03-17T10:03:19.543-07:002011-03-17T10:03:19.543-07:00@Marius:<br /><br />thanks for the hint, but I need the state in the URL of the login redirect on the client. It´s important for me to have a token with a hashmark so I can combine it with the GWT history mechanism. The GWT History mechanism checks the URL for #token. It works with facebook. My workaround is, that I check the URL for a &quot;&amp;code=&quot; string and after that I check if there is a #oauth_facebook token in the URL. If there´s no facebook token, I just append a new #oauth_google token. After that my history mechanism can handle the rest. It´s a bit dirty, but it works ;) ... I hope I can find a better solution, but I think Google should allow the Hashmarks in the URLs because in my opinion it´s a reasonable way to handle the login with the history mechanism in ajax apps.<br /><br />kind regards, MichaelUnknownhttps://www.blogger.com/profile/07155783702103928601noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-23792136923155032102011-03-17T08:51:38.695-07:002011-03-17T08:51:38.695-07:00@Jambi<br /><br />OAuth 2 provides a parameter called &quot;state&quot; that can be used to pass data to the server and back. Would that work for you?Mariushttps://www.blogger.com/profile/09850396547441903353noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-90134347161384354162011-03-17T07:01:36.698-07:002011-03-17T07:01:36.698-07:00I have another question:<br /><br />Is it somehow possible to pass a redirect URL which is qualified for a GWT History token? I basically need to pass a hashmark within the URL, but it doesn´t seem to work. Neither with the character &quot;#&quot; or with the encoded type &quot;%23&quot;. It would be important for me since I have to handle the different codes I get from facebook or google.<br /><br />kind regards, MichaelUnknownhttps://www.blogger.com/profile/07155783702103928601noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-19192527847715053522011-03-17T01:48:10.361-07:002011-03-17T01:48:10.361-07:00@Andrew<br /><br />Great news! How will it look like? Will there be a scope for basic user informations? I can´t wait ^.^Unknownhttps://www.blogger.com/profile/07155783702103928601noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-79230828439511716632011-03-16T22:46:26.312-07:002011-03-16T22:46:26.312-07:00Any idea if this has any impact on 2-Legged OAuth?Peter Moranhttps://www.blogger.com/profile/04949499747361034820noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-5602597554660586282011-03-16T17:04:23.280-07:002011-03-16T17:04:23.280-07:00Hi,<br /><br />For native applications<br /><br />When use redirect_uri:redirect_uri=urn:ietf:wg:2.0:oob, return exception invalid_request: Invalid parameter value for redirect_uri: Missing authority: urn:ietf:wg:2.0:oob<br /><br />The correct thing redirect_uri=urn:ietf:wg:oauth:2.0:oob <br /><br />It&#39;s a typo?<br /><br />For server-side applications<br /><br />I did a small example, see http://gooogl.heroku.com<br /><br />Thanks for job!Jésus Lopeshttps://www.blogger.com/profile/17268632320244722627noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-91478875565817211642011-03-16T08:50:18.080-07:002011-03-16T08:50:18.080-07:00@Nils Magnus:<br /><br />Take another look:<br /><br />http://code.google.com/apis/accounts/docs/OAuth2.html#IA<br /><br />And post in the forums if you&#39;ve got questions about it!<br /><br />@Matt and Jambi,<br /><br />Today we&#39;re supporting OpenID for login, but we&#39;ve heard your pain about mess of different identity protocols on the web. Stay tuned :)Andrewhttps://www.blogger.com/profile/06278956848943558815noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-63369406337096517142011-03-16T02:20:18.233-07:002011-03-16T02:20:18.233-07:00@Matt:<br /><br />I want exactly the same thing that you want. But I think you are supposed to use OpenID right now. The problem is, that you get a lot of different login mechanisms because Twitter is using OAuth 1.0 (Or am I wrong?), Facebook is using OAuth 2.0 and Google is using OpenID for login. Please correct me if I´m wrong. So basically I have the same question.<br /><br />Will Google support login for basic user informations with OAuth 2.0 for Google APIs?Unknownhttps://www.blogger.com/profile/07155783702103928601noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-72615458599976818292011-03-15T18:41:44.705-07:002011-03-15T18:41:44.705-07:00I&#39;m having an issue using the APIs. The examples show a request to access to the user&#39;s entire set of contacts. But I don&#39;t want that, I just want to know about the user.<br /><br />I just want to allow people to login to my website google&#39;s oauth. <br /><br />Can someone help by pointing to the documentation for the API of &quot;just get basic information for a user&quot;<br /><br />What I want is<br />1. to ask the user just for permission to know basic information about them<br />2. an API to get that basic informationAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-11300808.post-11837497468604786922011-03-14T19:09:12.464-07:002011-03-14T19:09:12.464-07:00Then why doesn&#39;t Google support these kinds of &quot;exciting&quot; mashups? For example, why did Google Voice block iGoogle from accessing its mobile version in an iframe over a year ago and has yet to provide a different option?<br /><br />Many people have to use older browsers to view our iGoogle pages properly. Google seems to have abandoned iGoogle. <br /><br />A single page where we can view all of our inboxes and such is great but I guess Google don&#39;t get to shove as many ads in our faces that way. That&#39;s what it all comes down to, the all mighty dollar.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-11300808.post-40381951008502558302011-03-14T15:12:35.748-07:002011-03-14T15:12:35.748-07:00Sweeeeeet.Alex Taubeshttps://www.blogger.com/profile/09076134668731841867noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-49777739660503714652011-03-14T13:25:01.551-07:002011-03-14T13:25:01.551-07:00Sweet! Looking forward to the docs for oauth 2.0 for installed apps :)Anonymoushttps://www.blogger.com/profile/01985767351864220372noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-65574755450997984752011-03-14T12:34:47.045-07:002011-03-14T12:34:47.045-07:00No more OAuth signatures! Yay!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-11300808.post-85843271799717661882011-03-14T11:52:22.831-07:002011-03-14T11:52:22.831-07:00awesome, just when i needed it the most :) thanks!Anonymoushttps://www.blogger.com/profile/06845741849458004991noreply@blogger.comtag:blogger.com,1999:blog-11300808.post-87644292767788480492011-03-14T11:45:17.452-07:002011-03-14T11:45:17.452-07:00The current implementation is for version 10 of the OAuth 2 protocol:<br />http://tools.ietf.org/html/draft-ietf-oauth-v2-10<br /><br />The specification is converging rapidly and we are committed to support the final version. Backward compatibility will be maintained.Mariushttps://www.blogger.com/profile/09850396547441903353noreply@blogger.com