StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
18588624
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
4
CommunityOwnedDate
CreationDate
2013-09-03T09:24:53.207
FavoriteCount
0
LastActivityDate
2014-10-28T04:42:09.360
LastEditDate
2014-10-28T04:42:09.360
LastEditorUserId
1000753
OwnerUserId
1000753
ParentId
18576441
PostTypeId
2
Score
10
ViewCount
0
LastEditorDisplayName
text
Body
My 2c is avoid oauth2 libraries. Of course opinions may vary, but for me they provide very leaky abstractions, so you end up being dragged into understanding oauth by the back door. For me at least, taking an hour to read the the two pages that tell you all you need to know, and carefully avoiding all the others, will get you where you want to be. In simple terms, the steps are :- <ol> <li>Call the auth URL with your app/client ID and the scopes you require. Include the "email" scope.</li> <li>Google will walk the user through login, and (if the first time through) authorisation dialogues</li> <li>Eventually the browser will redirect back to your oauthcallback url, and pass you an auth code</li> <li>Call google to convert the auth code to a refresh token. This will also return the user's google ID and an access token.</li> <li>Store the user ID in your session so you can identify the user subsequently</li> <li>Persist the refresh token alongside the google user id in a database</li> </ol> On subsequent visits... <ol> <li>If you have the google user id in the your session, you can retrieve the refresh token from your database and use it to generate access tokens as you need them.</li> <li>If you do NOT have the google user id in your session, go through the steps above. This time, google will NOT prompt the user for authorisation (since it's already authorised), and the refresh token will be blank (since you already have one stored).</li> </ol> Everything you need to know is within the oauth playground page. If you click through the buttons, you will see that it is following the steps I outlined above. You then need to deal with the possible error situations, eg <ul> <li>user declines permission</li> <li>user withdraws permission</li> <li>google expired the refresh token (happens a lot) so you need to re-auth</li> <li>timeouts </li> </ul> The two pages you need to read are :- <a href="https://developers.google.com/accounts/docs/OAuth2WebServer" rel="noreferrer">https://developers.google.com/accounts/docs/OAuth2WebServer</a> and the oauth playground at <a href="https://developers.google.com/oauthplayground/" rel="noreferrer">https://developers.google.com/oauthplayground/</a> Trust me, as long as you know how to form a URL, store a refresh token (it's just a string) and parse a JSON response, then everything you need is on those pages. Except ... all the documentation skips over the need to preserve the user ID in your session so you know who it is that is accessing your app. If you're on AppEngine, you may be confused by the appengine sample code which uses a separate appengine login. Ignore it. You will be using oauth to authenticate the user so the appengine stuff doesn't apply and is somewhat confusing. It's actually much simpler than some of the documentation would lead you to believe, and like I said, imho the leaky libraries don't help.
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POUse Oauth 2.0 in google app engine with java
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USpinoyyid
UserOwnerUserId
1. USpinoyyid
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. POUse Oauth 2.0 in google app engine with java
 singulars
 PostTypePostTypeId
 PTQuestion
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTAcceptedByOriginator
CommentsPostId
1. COVery cool your explanation, in general I have problems understanding the flow of the OAuth, I will try to follow your recomendations, I got stuck with this, I hope finally can get something, thank you.
 singulars
 PostPostId
 PO
 UserUserId
 USJohn B

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.