我有一个类似批处理的应用程序,它由调度程序定期调用,不涉及任何人工用户。它使用Perl Net::Google::Spreadsheets软件包通过从数据库中提取的数据更新Google表格电子表格中的某些单元格。
很长一段时间,仅通过为包的“新”方法提供用户名和密码来验证自己很简单。但截至目前,Google要求我们使用OAuth2协议进行身份验证。
J.T.提供了a solution,我确信这对很多比我更有见识的人非常有帮助。但是,如果有人能回答一些问题来澄清它,我将不胜感激,如下:
创建凭据:在Google Developer Console中创建项目并要求创建新的客户ID后,您将看到三个选项:
我应该选择 for may application ?
我应该要求提供JSON还是P12密钥?
我如何处理我获得的各类实体?我在Perl脚本中嵌入了什么?
在第13行,J.T评论说“你需要在这里放置代码并接收令牌”。什么样的代码?做什么?
由于没有人类用户,我需要应用程序自行完成完整的身份验证过程。 J.T.的代码提示用户输入“代码”。此代码是“凭据”实体之一吗?我该怎么办?
换句话说,我需要有人在整个过程中轻轻地走我,一步一小步。
谢谢大家!
MeirG
答案 0 :(得分:3)
我也必须经历这一点,一开始不知道太多,所以我很乐意帮助解释它。以下是答案,但请随时要求澄清。基本上,您需要首先运行需要手动干预的脚本 - 这样您就可以从Google获取访问令牌,然后您的批处理脚本可以反复使用而无需人工干预。所以你必须在开始时跳过一些箍,但是一旦完成,你就完全没有了。所以:
选择"网络应用程序"。不直观,但它会起作用。
1b中。系统会要求您配置"同意屏幕"。你放在这里的东西并不重要 - 只需给项目一个标题。
1c上。对于"重定向uri",删除提供的" example.com"价值并输入" https://developers.google.com/oauthplayground"。
忽略JSON和P12键;它们适用于其他类型的应用程序。填写完上述信息并单击"创建客户端ID"后,您将获得一个显示客户端ID和客户端密码的页面(暂停后)。这些是您在下面的代码中需要的两个字符串。
下面的代码与您上面链接的解决方案基本相同(我非常依赖它),但我已经对其进行了编辑以改变一些内容,主要是为了提供有关内容的更多信息。继续将客户端ID和客户端密钥添加到下面的代码后,运行它。然后,您将完成以下步骤:
如果一切顺利,脚本将交换该代码以获取访问令牌,并将令牌保存在磁盘上。然后您的批处理脚本可以重复使用该标记。
这是扩展代码,可以完成所有这些:
#!/usr/bin/perl
# Code to get a web-based token that can be stored
# and used later to authorize our spreadsheet access.
# Based on code from https://gist.github.com/hexaddikt/6738162
#-------------------------------------------------------------------
# To use this code:
# 1. Edit the lines below to put in your own
# client_id and client_secret from Google.
# 2. Run this script and follow the directions on
# the screen, which will give step you
# through the following steps:
# 3. Copy the URL printed out, and paste
# the URL in a browser to load the page.
# 4. On the resulting page, click OK (possibly
# after being asked to log in to your Google
# account).
# 5. You will be redirected to a page that provides
# a code that you should copy and paste back into the
# terminal window, so this script can exchange it for
# an access token from Google, and store the token.
# That will be the the token the other spreadsheet access
# code can use.
use Net::Google::DataAPI::Auth::OAuth2;
use Net::Google::Spreadsheets;
use Storable; #to save and restore token for future use
use Term::Prompt;
# Provide the filename in which we will store the access
# token. This file will also need to be readable by the
# other script that accesses the spreadsheet and parses
# the contents.
my $session_filename = "stored_google_access.session";
# Code for accessing your Google account. The required client_id
# and client_secret can be found in your Google Developer's console
# page, as described in the detailed instruction document. This
# block of code will also need to appear in the other script that
# accesses the spreadsheet.
# Be sure to edit the lines below to fill in your correct client
# id and client secret!
my $oauth2 = Net::Google::DataAPI::Auth::OAuth2->new(
client_id => 'your_client_id.apps.googleusercontent.com',
client_secret => 'your_client_secret',
scope => ['http://spreadsheets.google.com/feeds/'],
redirect_uri => 'https://developers.google.com/oauthplayground',
);
# We need to set these parameters this way in order to ensure
# that we get not only an access token, but also a refresh token
# that can be used to update it as needed.
my $url = $oauth2->authorize_url(access_type => 'offline',
approval_prompt => 'force');
# Give the user instructions on what to do:
print <<END
The following URL can be used to obtain an access token from
Google.
1. Copy the URL and paste it into a browser.
2. You may be asked to log into your Google account if you
were not logged in already in that browser. If so, go
ahead and log in to whatever account you want to have
access to the Google doc.
3. On the next page, click "Accept" when asked to grant access.
4. You will then be redirected to a page with a box in the
left-hand column labeled "Authorization code".
Copy the code in that box and come back here.
Here is the URL to paste in your browser to get the code:
$url
END
;
# Here is where we get the code from the user:
my $code = prompt('x', 'Paste the code obtained at the above URL here: ', '', '');
# Exchange the code for an access token:
my $token = $oauth2->get_access_token($code) or die;
# If we get to here, it worked! Report success:
print "\nToken obtained successfully!\n";
print "Here are the token contents (just FYI):\n\n";
print $token->to_string, "\n";
# Save the token for future use:
my $session = $token->session_freeze;
store($session, $session_filename);
print <<END2
Token successfully stored in file $session_filename.
Use that filename in your spreadsheet-access script to
load the token as needed for access to the spreadsheet data.
END2
;
一旦您完成了工作并将令牌存储在磁盘上,那么批处理脚本的开头就可以像这样设置电子表格访问权限:
use Net::Google::Spreadsheets;
use Net::Google::DataAPI::Auth::OAuth2;
use Net::OAuth2::AccessToken;
use Storable;
# Authentication code based on example from gist at
# https://gist.github.com/hexaddikt/6738247
# Get the token that we saved previously in order to authenticate:
my $session_filename = "stored_google_access.session";
# Be sure to edit the lines below to fill in your correct client
# id and client secret!
my $oauth2 = Net::Google::DataAPI::Auth::OAuth2->new(
client_id => 'your_client_id.apps.googleusercontent.com',
client_secret => 'your_client_secret',
scope => ['http://spreadsheets.google.com/feeds/'],
redirect_uri => 'https://developers.google.com/oauthplayground',
);
# Deserialize the file so we can thaw the session and reuse the refresh token
my $session = retrieve($sessionfile);
my $restored_token = Net::OAuth2::AccessToken->session_thaw($session,
auto_refresh => 1,
profile => $oauth2->oauth2_webserver,
);
$oauth2->access_token($restored_token);
# Now we can use this token to access the spreadsheets
# in our account:
my $service = Net::Google::Spreadsheets->new(
auth => $oauth2);