谷歌登陆服务器校验
参考官方文档:https://developers.google.com/identity/sign-in/android/backend-auth?hl=zh-cnjava
接入游戏或者app在googleplay的时候须要使用谷歌账号体系。官方文档写的很清楚,接入谷歌登陆在服务器端有两种验证方法:android
-
Using a Google API Client Library
import com.google.api.client.googleapis.auth.oauth2.GoogleIdToken; import com.google.api.client.googleapis.auth.oauth2.GoogleIdToken.Payload; import com.google.api.client.googleapis.auth.oauth2.GoogleIdTokenVerifier; ... GoogleIdTokenVerifier verifier = new GoogleIdTokenVerifier.Builder(transport, jsonFactory) // Specify the CLIENT_ID of the app that accesses the backend: .setAudience(Collections.singletonList(CLIENT_ID)) // Or, if multiple clients access the backend: //.setAudience(Arrays.asList(CLIENT_ID_1, CLIENT_ID_2, CLIENT_ID_3)) .build(); // (Receive idTokenString by HTTPS POST) GoogleIdToken idToken = verifier.verify(idTokenString); if (idToken != null) { Payload payload = idToken.getPayload(); // Print user identifier String userId = payload.getSubject(); System.out.println("User ID: " + userId); // Get profile information from payload String email = payload.getEmail(); boolean emailVerified = Boolean.valueOf(payload.getEmailVerified()); String name = (String) payload.get("name"); String pictureUrl = (String) payload.get("picture"); String locale = (String) payload.get("locale"); String familyName = (String) payload.get("family_name"); String givenName = (String) payload.get("given_name"); // Use or store profile information // ... } else { System.out.println("Invalid ID token."); } -
Calling the tokeninfo endpoint
An easy way to validate an ID token for debugging and low-volume use is to use the
tokeninfoendpoint. Calling this endpoint involves an additional network request that does most of the validation for you, but introduces some latency and the potential for network errors.jsonTo validate an ID token using the
https://www.googleapis.com/oauth2/v3/tokeninfo?id_token=XYZ123tokeninfoendpoint, make an HTTPS POST or GET request to the endpoint, and pass your ID token in theid_tokenparameter. For example, to validate the token "XYZ123", make the following GET request:api
If the token is properly signed and the iss and exp claims have the expected values, you will get a HTTP 200 response, where the body contains the JSON-formatted ID token claims. Here's an example response:服务器
{
// These six fields are included in all Google ID Tokens.
"iss": "https://accounts.google.com",
"sub": "110169484474386276334",
"azp": "1008719970978-hb24n2dstb40o45d4feuo2ukqmcc6381.apps.googleusercontent.com",
"aud": "1008719970978-hb24n2dstb40o45d4feuo2ukqmcc6381.apps.googleusercontent.com",
"iat": "1433978353",
"exp": "1433981953",
// These seven fields are only included when the user has granted the "profile" and
// "email" OAuth scopes to the application.
"email": "testuser@gmail.com",
"email_verified": "true",
"name" : "Test User",
"picture": "https://lh4.googleusercontent.com/-kYgzyAWpZzJ/ABCDEFGHI/AAAJKLMNOP/tIXL9Ir44LE/s99-c/photo.jpg",
"given_name": "Test",
"family_name": "User",
"locale": "en"
}
其中sub就是google第三方的id。app
- 1. 谷歌试验无密码登陆
- 2. Struts2拦截器实例——登陆校验
- 3. 帐号服务器-登陆
- 4. 服务器免密登陆
- 5. 如何登陆服务器
- 6. SpringBoot+jquery 登陆+验证码校验
- 7. 【skynet】 loginserver 登陆服务器模板 登录验证
- 8. 和谷歌 服务器时间同步
- 9. 谷歌验证器(Google Authenticator)
- 10. Android开发简单登陆服务器,客户端实现登陆服务器
- 更多相关文章...
- • Git 服务器搭建 - Git 教程
- • 服务器上的 XML - XML 教程
- • Spring Cloud 微服务实战(三) - 服务注册与发现
- • Docker容器实战(七) - 容器眼光下的文件系统
-
每一个你不满意的现在,都有一个你没有努力的曾经。