got 'invalid_grant' in oauth2 SignedJwtAssertionCredentials

前端 未结 3 1193
天命终不由人
天命终不由人 2021-02-07 13:21

I am trying to make an oauth2 access_token in a server-to-server JSON API scenario. But it failed with invalid_grant error, please help.

from oauth2client.client         


        
相关标签:
3条回答
  • 2021-02-07 13:27

    I fixed it.

    SERVICE_ACCOUNT_EMAIL = 'xxxxxx.apps.googleusercontent.com'
    

    the above is client ID not Email, I fixed this and it's working now.

    0 讨论(0)
  • 2021-02-07 13:36

    I have the same problem.

    To solve the problem, you need to notice the following elements:

    1. Did you use client_secrets.json in your program? If yes, check whether the name is the same as that in your current directory.

    2. The "client_email " or the "SERVICE_ACCOUNT_EMAIL" is not your personal email or the client id. It is "client id's email". You can check that email in https://console.developers.google.com/project/ ==>credentials==>Service account==>email address.

      Basically, if your client id is:<clientid>.apps.googleusercontent.com

      You client email here would be:<clientid>@developer.gserviceaccount.com

    0 讨论(0)
  • 2021-02-07 13:38

    In my case the problem was with the .boto file. Try to configure it again with the credentials from the Service account.

    For the ones using fallback: gcs_oauth2_boto_plugin.SetFallbackClientIdAndSecret(CLIENT_ID, CLIENT_SECRET)

    use for the fallback any "Client ID for native application". This is not necessary as its said in: https://cloud.google.com/storage/docs/gspythonlibrary

    but i couldn't find other way, it was throwing errors without it.

    0 讨论(0)
提交回复
热议问题