使用带有证书身份验证的电子表格API OAuth2

时间:2013-11-26 05:25:17

标签: python gdata google-oauth google-spreadsheet-api google-apps-marketplace

我正在尝试将Gdata Spreadsheet API与OAuth2一起使用。

使用OAuth2.0 ClientID与域上的OAuth2WebServerFlow一起使用, 但是使用服务帐户/证书会导致400 BAD请求

使用的范围是

https://www.googleapis.com/auth/userinfo.email 
https://www.googleapis.com/auth/userinfo.profile 
https://www.googleapis.com/auth/admin.directory.group.readonly 
https://www.googleapis.com/auth/admin.directory.user.readonly 
https://docs.google.com/feeds/ 
https://spreadsheets.google.com/feeds

enter image description here enter image description here

以下是我正在使用的代码

成功:OAuth2.0 

flow = OAuth2WebServerFlow(client_id=CLIENT_ID,
                           client_secret=CLIENT_SECRET,
                           scope=SCOPE,
                           access_type = "online",
                           redirect_uri=REDIRECT_URI)
credentials = flow.step2_exchange(code)
auth2token = gauth.OAuth2Token(
                            client_id=credentials.client_id,
                            client_secret=credentials.client_secret,
                            scope=SCOPE,
                            access_token=credentials.access_token,
                            refresh_token=credentials.refresh_token,
                            user_agent='spreadsheetclient/1.0',)
client = SpreadsheetsClient(auth_token=auth2token)
auth2token.authorize(client)
q = SpreadsheetQuery(title= "ItemMaster",title_exact=True)
feed = client.get_spreadsheets(query = q)

FAILS Oauth2.0证书

credentials = SignedJwtAssertionCredentials(
                        SERVICE_ACCOUNT_EMAIL,
                        CERTIFICATE,
                        scope = SCOPE,
                        prn = "admin@domain.com"
                        )
http = httplib2.Http()
http = credentials.authorize(http)
auth2token = gauth.OAuth2Token(
                        client_id=credentials.client_id,
                        client_secret=credentials.client_secret,
                        scope=SCOPE,
                        access_token=credentials.access_token,
                        refresh_token=credentials.refresh_token,
                        user_agent='spreadsheetclient/1.0',)
client = SpreadsheetsClient()
auth2token.authorize(client)
q = SpreadsheetQuery(title= "ItemMaster",title_exact=True,)
feed = client.get_spreadsheets(query = q)

那么有没有办法让证书身份验证适用于Gdata API?

1 个答案:

答案 0 :(得分:4)

我使用OAuth2TokenFromCredentials

解决了这个问题 
    credentials = SignedJwtAssertionCredentials(
                    SERVICE_ACCOUNT_EMAIL,
                    PRIVATE_KEY,
                    scope = SCOPE,
                    sub = "admin@domain.com")
    auth2token = gauth.OAuth2TokenFromCredentials(credentials)
    client = SpreadsheetsClient()
    auth2token.authorize(client)
    q = SpreadsheetQuery(title= "ItemMaster",title_exact=True,)
    feed = client.get_spreadsheets(query = q)
    self.response.write(feed)
相关问题
最新问题