google-openid

问题 I have an existing asp.net mvc5 application using DotNetOpenAuth for Google OpenId authentication. I am migrating to Asp.Net Identity, and using Google+ Auth with OAuth2.0. But I have seen thant I can't map existing OpenId account Id to OAuth2.0 Id : - Old id is : https://www.google.com/accounts/o8/id?id=blablabla - New Id is : a long number Since I would like to use new id, I am searching for help on migrating identities. I have not found yet a simple sample to achieve this. I am using a new

问题 I have an existing asp.net mvc5 application using DotNetOpenAuth for Google OpenId authentication. I am migrating to Asp.Net Identity, and using Google+ Auth with OAuth2.0. But I have seen thant I can't map existing OpenId account Id to OAuth2.0 Id : - Old id is : https://www.google.com/accounts/o8/id?id=blablabla - New Id is : a long number Since I would like to use new id, I am searching for help on migrating identities. I have not found yet a simple sample to achieve this. I am using a new

问题 As required by Google, we are attempting to finish our migration from Google's previous OpenID Authentication flow to the new OpenID Connect implementation. Everything has been relatively straightforward up until we attempted to use the max_age parameter (as defined in the openid-connect-core spec), which serves to replace the OpenID pape extension parameter: max_auth_age . Supplying the max_age parameter doesn't break the authentication request right away, but only after the user

问题 As required by Google, we are attempting to finish our migration from Google's previous OpenID Authentication flow to the new OpenID Connect implementation. Everything has been relatively straightforward up until we attempted to use the max_age parameter (as defined in the openid-connect-core spec), which serves to replace the OpenID pape extension parameter: max_auth_age . Supplying the max_age parameter doesn't break the authentication request right away, but only after the user

问题 When using Google's OpenIDConnect authentication system, it's possible to specify email or profile or both in the scope parameter. If you request the email scope, the "email" and "email_verified" claims will be included in the id_token that gets returned as part of a successful OAuth2 authentication session. Here's an example from Google's documentation: An ID token's payload An ID token is a JSON object containing a set of name/value pairs. Here’s an example, formatted for readability: {"iss

问题 I am new to OAuth, and want to get the user ID (an email address) from Google using OAuth. But I don't want to get the user's Google Contacts Information. 回答1: We can get google Email address only not the contacts by making the scope of request token Like : "https://www.google.com/accounts/OAuthGetRequestToken?scope=https://www.googleapis.com/auth/userinfo#email"; Now do a authorized call to get the response like : var responseText = oAuthConsumer.GetUserInfo("https://www.googleapis.com

问题 I am attempting to use Google Sign-In for Websites (https://developers.google.com/identity/sign-in/web/) and noticed that my solution is not working in Internet Explorer 11. To try to eliminate as many factors as possible, I created a simple test case based on the sample code provided by Google. I've tested it in Chrome on my Windows 7 PC, Chrome on my Mac, Safari on my Mac, Firefox on my Mac and Safari on my iPhone. It works on all of these (e.g., when I click the sign in button and select

问题 I've specified my Redirect URI in my account setup, but I'm not sure about where to specify it in my code. I'm using the "sign in with google" button, and I'm able to sign in, but the redirect_uri that I'm always seeing when I use fiddler is the same URI that I'm posting to. I'd like to have a different one. I'm sure this has to do with me not looking in the right place for instructions, as I'm new to OpenID connect. I thought setting the meta tag would do the trick if the URI matched the

问题 I'm using open_id_authentication gem to authenticate to google. In my sessions controller I call authenticate_with_open_id(complete_identity_url, OPENID_OPTS) do |openid_result, identity_url, registration| and it returns 401 status code Unauthenticated. But it should show google page in which I must confirm access. I made example app: https://github.com/mbashirov/rails3-test, it only has code in sessions controller and routes set. That code works perfectly on rails 2.3 app. There is error?

问题 What are the differences between the PHP implementation of Janrain's PHP OpenID library and the LightOpenID. Is one more secure than the other? According to Google's best practices page: A correct OpenID implementation has to: cover checking of cryptographic signatures checking of nonces Yadis discovery I'm guessing the Janrain's library does fulfill all these requirements as Google recommends the library, but is the LightOpenID fulfilling 1 & 2. 回答1: LightOpenID uses the stateless version of