使用OAuth 2.0和Google API的服务器到服务器身份验证示例 [英] Sample of Server to Server authentication using OAuth 2.0 with Google API's
问题描述
这是这个问题:
我成功创建了一个私钥,并且已经阅读了Google服务器到服务器概念的各种Google文档页面认证。
我需要创建一个JWT来授权我的App Engine应用程序(Python)访问Google日历并在日历中发布事件。从 oauth2client 中的源代码,它看起来像我需要使用 oauth2client.client.SignedJwtAssertionCredentials 来创建JWT。 p>
目前我缺少的是创建JWT所涉及的各个步骤的示例Python代码的样式化代码,并使用它来验证我的Google日历的App Engine应用程序。另外,从 SignedJwtAssertionCredentials 源代码,它看起来像我需要一些App Engine兼容库来执行签名。
任何人都可以对此有所了解?
经过一番挖掘,我发现了一个。从这里我创建了以下简单的示例,创建一个JWT来访问日历API:
import httplib2
import pprint
$ b $ from apiclient.discovery import build $ b $ from oauth2client.client import SignedJwtAssertionCredentials
#从Google提供的私钥文件中获取私钥。
f = file(your_private_key_file.p12,rb)
key = f.read()
f.close()
#创建JWT
credentials = SignedJwtAssertionCredentials(
xxxxxxxxxx@developer.gserviceaccount.com,key,
scope =https://www.googleapis.com/auth/calendar
)
#创建一个授权http实例
http = httplib2.Http()
http = credentials.authorize(http)
#创建一个服务调用日历API
service = build(calendar,v3,http = http)
#列出所有日历。
lists = service.calendarList()。list(pageToken = None).execute(http = http)
pprint.pprint(lists)
为了在Google App Engine上工作,您需要为您的应用程序启用PyCrypto。这意味着将以下内容添加到 app.yaml 文件中:
库:
- 名称:pycrypto
版本:latest
This is a follow-up question for this question:
I have successfully created a private key and have read the various pages of Google documentation on the concepts of server to server authentication.
I need to create a JWT to authorize my App Engine application (Python) to access the Google calendar and post events in the calendar. From the source in oauth2client it looks like I need to use oauth2client.client.SignedJwtAssertionCredentials to create the JWT.
What I'm missing at the moment is a stylised bit of sample Python code of the various steps involved to create the JWT and use it to authenticate my App Engine application for Google Calendar. Also, from SignedJwtAssertionCredentials source it looks like I need some App Engine compatible library to perform the signing.
Can anybody shed some light on this?
After some digging I found a couple of samples based on the OAuth2 authentication. From this I cooked up the following simple sample that creates a JWT to access the calendar API:
import httplib2
import pprint
from apiclient.discovery import build
from oauth2client.client import SignedJwtAssertionCredentials
# Get the private key from the Google supplied private key file.
f = file("your_private_key_file.p12", "rb")
key = f.read()
f.close()
# Create the JWT
credentials = SignedJwtAssertionCredentials(
"xxxxxxxxxx@developer.gserviceaccount.com", key,
scope="https://www.googleapis.com/auth/calendar"
)
# Create an authorized http instance
http = httplib2.Http()
http = credentials.authorize(http)
# Create a service call to the calendar API
service = build("calendar", "v3", http=http)
# List all calendars.
lists = service.calendarList().list(pageToken=None).execute(http=http)
pprint.pprint(lists)
For this to work on Google App Engine you will need to enable PyCrypto for your app. This means adding the following to your app.yaml file:
libraries:
- name: pycrypto
version: "latest"
这篇关于使用OAuth 2.0和Google API的服务器到服务器身份验证示例的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
