谷歌登陸服務器校驗
參考官方文檔:https://developers.google.com/identity/sign-in/android/backend-auth?hl=zh-cnjava
接入遊戲或者app在googleplay的時候須要使用谷歌賬號體系。官方文檔寫的很清楚,接入谷歌登陸在服務器端有兩種驗證方法:android
-
Using a Google API Client Library
import com.google.api.client.googleapis.auth.oauth2.GoogleIdToken; import com.google.api.client.googleapis.auth.oauth2.GoogleIdToken.Payload; import com.google.api.client.googleapis.auth.oauth2.GoogleIdTokenVerifier; ... GoogleIdTokenVerifier verifier = new GoogleIdTokenVerifier.Builder(transport, jsonFactory) // Specify the CLIENT_ID of the app that accesses the backend: .setAudience(Collections.singletonList(CLIENT_ID)) // Or, if multiple clients access the backend: //.setAudience(Arrays.asList(CLIENT_ID_1, CLIENT_ID_2, CLIENT_ID_3)) .build(); // (Receive idTokenString by HTTPS POST) GoogleIdToken idToken = verifier.verify(idTokenString); if (idToken != null) { Payload payload = idToken.getPayload(); // Print user identifier String userId = payload.getSubject(); System.out.println("User ID: " + userId); // Get profile information from payload String email = payload.getEmail(); boolean emailVerified = Boolean.valueOf(payload.getEmailVerified()); String name = (String) payload.get("name"); String pictureUrl = (String) payload.get("picture"); String locale = (String) payload.get("locale"); String familyName = (String) payload.get("family_name"); String givenName = (String) payload.get("given_name"); // Use or store profile information // ... } else { System.out.println("Invalid ID token."); } -
Calling the tokeninfo endpoint
An easy way to validate an ID token for debugging and low-volume use is to use the
tokeninfoendpoint. Calling this endpoint involves an additional network request that does most of the validation for you, but introduces some latency and the potential for network errors.jsonTo validate an ID token using the
https://www.googleapis.com/oauth2/v3/tokeninfo?id_token=XYZ123tokeninfoendpoint, make an HTTPS POST or GET request to the endpoint, and pass your ID token in theid_tokenparameter. For example, to validate the token "XYZ123", make the following GET request:api
If the token is properly signed and the iss and exp claims have the expected values, you will get a HTTP 200 response, where the body contains the JSON-formatted ID token claims. Here's an example response:服務器
{
// These six fields are included in all Google ID Tokens.
"iss": "https://accounts.google.com",
"sub": "110169484474386276334",
"azp": "1008719970978-hb24n2dstb40o45d4feuo2ukqmcc6381.apps.googleusercontent.com",
"aud": "1008719970978-hb24n2dstb40o45d4feuo2ukqmcc6381.apps.googleusercontent.com",
"iat": "1433978353",
"exp": "1433981953",
// These seven fields are only included when the user has granted the "profile" and
// "email" OAuth scopes to the application.
"email": "testuser@gmail.com",
"email_verified": "true",
"name" : "Test User",
"picture": "https://lh4.googleusercontent.com/-kYgzyAWpZzJ/ABCDEFGHI/AAAJKLMNOP/tIXL9Ir44LE/s99-c/photo.jpg",
"given_name": "Test",
"family_name": "User",
"locale": "en"
}
其中sub就是google第三方的id。app
- 1. 谷歌試驗無密碼登陸
- 2. Struts2攔截器實例——登陸校驗
- 3. 帳號服務器-登陸
- 4. 服務器免密登陸
- 5. 如何登陸服務器
- 6. SpringBoot+jquery 登陸+驗證碼校驗
- 7. 【skynet】 loginserver 登陸服務器模板 登錄驗證
- 8. 和谷歌 服務器時間同步
- 9. 谷歌驗證器(Google Authenticator)
- 10. Android開發簡單登陸服務器,客戶端實現登陸服務器
- 更多相關文章...
- • Git 服務器搭建 - Git 教程
- • 服務器上的 XML - XML 教程
- • Spring Cloud 微服務實戰(三) - 服務註冊與發現
- • Docker容器實戰(七) - 容器眼光下的文件系統
-
每一个你不满意的现在,都有一个你没有努力的曾经。