oauth

问题 I'm writing a REST-ish API service the provides the ability to interact with the end user's data in other 3rd party services (themselves REST APIs) via OAuth. A common example might be publishing data from my service to a third-party service such as Facebook or Twitter. Suppose, for example, I perform an OAuth dance with the end user and Facebook, resulting in some short-term access token that my service can use to interact with the user's Facebook account. If that access token expires and

问题 I'm creating a site where I want to show Instagram posts. I need access_token, so I'm following the flow, trying to get "code" Once it worked, but never again... The message is always "{"error_type": "OAuthException", "code": 400, "error_message": "Invalid scope field(s): basic,user_profile,user_media"}" string authUri = "https://api.instagram.com/oauth/authorize/?client_id=" + _clientID + "&redirect_uri=" + redirectUri + "&scope=user_profile,user_media" + "&response_type=code"; Process.Start

问题 I'm creating a site where I want to show Instagram posts. I need access_token, so I'm following the flow, trying to get "code" Once it worked, but never again... The message is always "{"error_type": "OAuthException", "code": 400, "error_message": "Invalid scope field(s): basic,user_profile,user_media"}" string authUri = "https://api.instagram.com/oauth/authorize/?client_id=" + _clientID + "&redirect_uri=" + redirectUri + "&scope=user_profile,user_media" + "&response_type=code"; Process.Start

问题 I created a web application which is working with an Azure Active Directory authentification. Everything works fine on localhost, but I'm getting the following error when I publish the application into Azure: AADSTS50011: The reply url specified in the request does not match the reply urls configured for the application: '656cc46c-f858-4a45-bf83-698791e052f1'. What I tried: In Azure, I configured the Reply URL of the application in question to be: http://gp-rh.azurewebsites.net/signin-oidc

问题 I have been working with the protected authentication of the netflix api and the python oauth2 library. I have no problem making signed requests, however, to allow users to sign in using their netflix accounts, I am running into a few problems when I try to get the access_token, I know there cases in which OAuth doesn't return a verifier , even if its supposed to, however after being redirected from the authorization page of netflix I get something like this: http://127.0.0.1:5000/authorized

问题 I have created just a simple django app to login using tweeter, but when i try to login from my app I get this message "You are authenticated as xxx, but are not authorized to access this page. Would you like to login to a different account?" I have tried to login with account I used to create the app and different account, but the result is the same. What could be the solution to this? I am using django and django-allauth library 回答1: To access the Django admin, the user needs is_staff=True

问题 I have created just a simple django app to login using tweeter, but when i try to login from my app I get this message "You are authenticated as xxx, but are not authorized to access this page. Would you like to login to a different account?" I have tried to login with account I used to create the app and different account, but the result is the same. What could be the solution to this? I am using django and django-allauth library 回答1: To access the Django admin, the user needs is_staff=True

问题 I've been trying to add Google Sign-In in Android but have a couple of doubts. From the Android documentation Integrate google sign in android In the server side authentication part Client Id is required which is OAuth 2.0 web application client ID for your backend server. From android's documentation: Get your backend server's OAuth 2.0 client ID If your app authenticates with a backend server or accesses Google APIs from your backend server, you must get the OAuth 2.0 client ID that was

问题 I've been trying to add Google Sign-In in Android but have a couple of doubts. From the Android documentation Integrate google sign in android In the server side authentication part Client Id is required which is OAuth 2.0 web application client ID for your backend server. From android's documentation: Get your backend server's OAuth 2.0 client ID If your app authenticates with a backend server or accesses Google APIs from your backend server, you must get the OAuth 2.0 client ID that was

问题 My REST service uses OAuth 2.0 authentication. I want to test some GET URLs using the browser (without using a client). Can I pass the bearer token in the URL ? URL : www.example.com/employee/employeeId 回答1: You can pass it in the access_token query parameter, see https://tools.ietf.org/html/rfc6750#section-2.3, but as noted in the other answer, it is not the preferred way of passing a token. It may end up in logs, browser cache etc. On this method the spec says: Because of the security