麻烦oauth2client.client.Storage

时间:2015-06-29 10:11:45

标签: python google-app-engine oauth-2.0 google-oauth gdata-api

我正在尝试将OAuth2与我的App Engine应用程序一起使用,但我不断收到以下错误:

Encountered unexpected error from ProtoRPC method implementation: IOError ([Errno 30] Read-only file system: 'credentials.dat')
Traceback (most recent call last):
  File "/base/data/home/runtimes/python27/python27_lib/versions/third_party/protorpc-1.0/protorpc/wsgi/service.py", line 181, in protorpc_service_app
    response = method(instance, request)
  File "/base/data/home/runtimes/python27/python27_lib/versions/third_party/endpoints-1.0/endpoints/api_config.py", line 1332, in invoke_remote
    return remote_method(service_instance, request)
  File "/base/data/home/runtimes/python27/python27_lib/versions/third_party/protorpc-1.0/protorpc/remote.py", line 412, in invoke_remote_method
    response = method(service_instance, request)
  File "/base/data/home/apps/s~art-everywhere/7.385356767964097452/main.py", line 438, in upload_putphoto
    gd_client = PicasaWA.login()
  File "/base/data/home/apps/s~art-everywhere/7.385356767964097452/main.py", line 1653, in login
    storage.put(credentials)
  File "/base/data/home/apps/s~art-everywhere/7.385356767964097452/oauth2client/client.py", line 325, in put
    self.locked_put(credentials)
  File "/base/data/home/apps/s~art-everywhere/7.385356767964097452/oauth2client/file.py", line 113, in locked_put
    f = open(self._filename, 'wb')
IOError: [Errno 30] Read-only file system: 'credentials.dat'
看起来库中使用的写入存在问题。

以下是我使用的代码片段:

def login(cls):
    scope = 'https://picasaweb.google.com/data/'
    user_agent = 'picasawebuploader'
    # credential_store = os.path.join(os.path.split(__file__)[0], "credentials.dat")

    storage = Storage("credentials.dat")
    # storage = Storage(credential_store)
    credentials = storage.get()

    # user = users.get_current_user()
    # storage = StorageByKeyName(CredentialsModel, user.user_id(), 'credentials')
    # credentials = storage.get()

    if credentials is None or credentials.invalid:
        flow = flow_from_clientsecrets("client_secrets.json", scope=scope, redirect_uri='urn:ietf:wg:oauth:2.0:oob')
        uri = flow.step1_get_authorize_url()
        logging.info("uri: %s", uri)
        webbrowser.open(uri)
        code = "Here I posted the code retrived by the autentication"
        credentials = flow.step2_exchange(code)
        storage.put(credentials)

    if (credentials.token_expiry - datetime.utcnow()) < timedelta(minutes=5):
        http = httplib2.Http()
        http = credentials.authorize(http)
        credentials.refresh(http)

    gd_client = gdata.photos.service.PhotosService(source=user_agent,
                                                   email=USERNAME,
                                                   additional_headers={'Authorization' : 'Bearer %s' % credentials.access_token})

    return gd_client

我做错了什么? 谢谢大家的帮助!

2 个答案:

答案 0 :(得分:1)

您无法像在常规文件系统it's read-only上那样在AppEngine中创建文件。您需要使用特殊AppEngine credentials and storage objects

答案 1 :(得分:1)

遇到在本地计算机上运行devserver的同样问题。解决方案并不漂亮,但this change为我解决了这个问题。我不确定你是否能从appengine中运行storage.put(credentials)。这可能是很多问题的来源。将oauth流作为单独脚本的一部分,然后在修改devserver后从文件中加载实际工作的凭据。

我非常怀疑这实际上会在制作中发挥作用,所以你可能想看看Delegating domain-wide authority to the service account