使用此站点的Google OAuth 2.0代码 https://github.com/google/google-api-php-client
我需要帮助将刷新令牌编码到以下代码中,我不确定如何做到这一点,那里有很多资源,但我找不到任何可以帮助我将其合并到我的代码中的资源。现在的问题是,如果我让令牌过期,它会给我一个错误,说我没有刷新令牌,我需要它,因为我不想对访问类型使用 force 选项。我正在使用 php 客户端:
//include google api files
require_once 'src/Google/Client.php';
require_once 'src/Google/Service/Oauth2.php';
//start session
$client_id = 'xxxx';
$client_secret = 'xxxx';
$redirect_uri = 'xxxxx';
$client = new Google_Client();
$client->setApplicationName("Backpack Em");
$client->setClientId($client_id);
$client->setClientSecret($client_secret);
$client->setRedirectUri($redirect_uri);
$client->setScopes(array('https://www.googleapis.com/auth/userinfo.email','https://www.googleapis.com/auth/userinfo.profile'));
$client->setAccessType('offline');
$service = new Google_Service_Oauth2 ($client);
if (isset($_REQUEST['logout'])) {
unset($_SESSION['upload_token']);
$client->revokeToken(); //added
header('Location: ' . filter_var($redirect_uri, FILTER_SANITIZE_URL)); //redirect user back to page
}
if (isset($_GET['code'])) {
$client->authenticate($_GET['code']);
$_SESSION['upload_token'] = $client->getAccessToken();
$redirect = 'http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF']; header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
}
if (isset($_SESSION['upload_token']) && $_SESSION['upload_token']) {
$client->setAccessToken($_SESSION['upload_token']);
if ($client->isAccessTokenExpired()) {
unset($_SESSION['upload_token']);
}
}
if ($client->getAccessToken())
{
//For logged in user, get details from google using access token
$user = $service->userinfo->get($params);
//$user_id = filter_var($user['id'],FILTER_SANITIZE_SPECIAL_CHARS);
$user_name = filter_var($user['name'], FILTER_SANITIZE_SPECIAL_CHARS);
$first_name = filter_var($user['given_name'], FILTER_SANITIZE_SPECIAL_CHARS);
$last_name = filter_var($user['family_name'], FILTER_SANITIZE_SPECIAL_CHARS);
$email = filter_var($user['email'], FILTER_SANITIZE_EMAIL);
$profile_url = filter_var($user['link'], FILTER_VALIDATE_URL);
$profile_image_url = filter_var($user['picture'], FILTER_VALIDATE_URL);
$gender = filter_var($user['gender'], FILTER_SANITIZE_SPECIAL_CHARS);
$personMarkup = "$email<div><img src='$profile_image_url?sz=50'></div>";
$_SESSION['upload_token'] = $client->getAccessToken();
$_SESSION['upload_token'] = $client->getRefreshToken();
}
else
{
$authUrl = $client->createAuthUrl();
}
?>
将刷新令牌存储在会话中,如下所示:
$refresh_token = $client->getRefreshToken();
$_SESSION['refresh_token'] = $refresh_token;
当您想要获取新的访问令牌时,可以调用:
$refresh_token = $_SESSION['refresh_token'];
$client->refreshToken($refreshToken);
$access_token = $client->getAccessToken();
$_SESSION['upload_token'] = $access_token;
可以调用$client>isAccessTokenExpired()以查看访问令牌是否已过期,是否需要触发刷新流。
要打印/访问expires_in值,可以使用:
$json = json_decode($client->getAccessToken());
echo $json['expires_in'];
但请注意,expires_in是相对于令牌的创建时间而言的,因此要检查令牌是否已过期,请使用:
$expired = ($json['created'] + $json['expires_in']) < time();
老问题,但我希望这仍然可以帮助某人。这些是我在服务器端令牌刷新时遵循的步骤(用户无需登录)。
- 在 Google 开发者控制台应用中,使用 "https://developers.google.com/oauthplayground"作为重定向 URI,为 OAuth 创建新的客户端 ID。(您需要这个在操场上进行身份验证)
- 在 https://developers.google.com/oauthplayground/中,单击右上角的设置图标,然后选中"使用您自己的OAuth凭据"。您必须插入在第 1 点生成的有效凭据(客户端 ID 和客户端密钥)。
- 在左栏中选择并授权您的 API("步骤 1")
- 获得授权码后,将其兑换为令牌("步骤 2")
- 现在,您可以在脚本中使用客户端 ID、客户端密钥(与在第 2 点使用的令牌相同)和刷新令牌(在第 4 点获得 的令牌)。
这是我正在使用的工作代码(例如用于分析):
$clientId = 'xxxxxxxxxxxxxxxxx'; // from google developer console
$clientSecret = 'xxxxxxxxxxxxxx'; // from google developer console
$refreshToken = 'xxxxxxxxxx'; // from https://developers.google.com/oauthplayground/
$client = new Google_Client();
$client->setClientId($clientId);
$client->setClientSecret($clientSecret);
$client->refreshToken($refreshToken);
$access_token = $client->getAccessToken();
$client->setAccessToken($access_token);
$analytics = new Google_Service_Analytics($client);
$response = $analytics->data_ga->get(
'ga:' . xxxxxxx,
'7daysAgo',
'today',
'ga:sessions');