oauth2 login code example
Example 1: documentation for https://www.googleapis.com/oauth2/v4/token
>>>
>>> client_id = '<the id you get from google>.apps.googleusercontent.com'
>>> client_secret = '<the secret you get from google>'
>>> redirect_uri = 'https://your.registered/callback'
>>>
>>> authorization_base_url = "https://accounts.google.com/o/oauth2/v2/auth"
>>> token_url = "https://www.googleapis.com/oauth2/v4/token"
>>> scope = [
... "https://www.googleapis.com/auth/userinfo.email",
... "https://www.googleapis.com/auth/userinfo.profile"
... ]
>>> from requests_oauthlib import OAuth2Session
>>> google = OAuth2Session(client_id, scope=scope, redirect_uri=redirect_uri)
>>>
>>> authorization_url, state = google.authorization_url(authorization_base_url,
...
...
... access_type="offline", prompt="select_account")
>>> print 'Please go here and authorize,', authorization_url
>>>
>>> redirect_response = raw_input('Paste the full redirect URL here:')
>>>
>>> google.fetch_token(token_url, client_secret=client_secret,
... authorization_response=redirect_response)
>>>
>>> r = google.get('https://www.googleapis.com/oauth2/v1/userinfo')
>>> print r.content
Example 2: what is oauth2 authentication
Authorization :
It's a process of granting or denying access to resources.
Mostly it happens after Authentatication.
Most of the projects I worked on use Bearer token
with JWT in Authorizaiton header.
I have endpoint that I can use to generate this token
and pass it to the each requests in my test.
Different ways to making authorized request:
Auth2 is one of them
Auth2
(A much more secure way of authorizing your request
The flow is similar to Login with facabook,google
Eventually the token still get added to the
Authorization header)