Google Analytics OAuth2:如何解决错误:“redirect_uri_mismatch”?

时间:2016-05-18 18:34:42

标签: redirect oauth google-analytics oauth-2.0 uri

我正试图让这个例子起作用:https://developers.google.com/analytics/devguides/config/mgmt/v3/quickstart/web-php#enable

我得到的错误是“错误:redirect_uri_mismatch”。

为了安装google api资源,我使用了这个命令的作曲家:

php composer.phar require google/apiclient:^2.0.0@RC

这会在我的根站点文件夹中安装“vendor”文件夹。我的index.php和oauth2callback.php文件位于“public_html”文件夹中。

以下是访问我网站时出现错误的屏幕截图:

redirect_uri_mismatch

奇怪的是,如果我导航到错误消息“访问......以更新授权的...”中包含的上面的链接,我收到以下错误消息:“OAuth客户端不存在“

The OAuth Client Does Not Exist

如果我点击我唯一可用的客户端ID,我可以导航以查看我将在下面截图的URI:

API Screen

正如您所看到的,在授权的Javascript起源下,我列出了http://localhost,在授权的重定向URI下,我的实时网站后跟“oauthc2callback.php”文件扩展名。

我不明白如何摆脱我得到的错误。我已经尝试替换URI并添加不同的JavaScript源。

此外,出于某种原因,在最后一次截图中,它表示我无权编辑此OAuth客户端,但我可以进行修改。

我对index.php的代码:

<?php
// Load the Google API PHP Client Library.
require_once '../vendor/autoload.php';

// Start a session to persist credentials.
session_start();

// Create the client object and set the authorization configuration
// from the client_secretes.json you downloaded from the developer console.
$client = new Google_Client();
$client->setAuthConfigFile('../config/client_secrets.json');
$client->addScope('https://www.googleapis.com/auth/analytics.readonly');

// If the user has already authorized this app then get an access token
// else redirect to ask the user to authorize access to Google Analytics.
if (isset($_SESSION['access_token']) && $_SESSION['access_token']) {
    // Set the access token on the client.
    $client->setAccessToken($_SESSION['access_token']);

    // Create an authorized analytics service object.
    $analytics = new Google_Service_Analytics($client);

    // Get the first view (profile) id for the authorized user.
    $profile = getFirstProfileId($analytics);

    // Get the results from the Core Reporting API and print the results.
    $results = getResults($analytics, $profile);
    printResults($results);
} else {
    $redirect_uri = 'http://' . $_SERVER['HTTP_HOST'] . '/oauth2callback.php';
    header('Location: ' . filter_var($redirect_uri, FILTER_SANITIZE_URL));
}


function getFirstprofileId(&$analytics) {
    // Get the user's first view (profile) ID.

    // Get the list of accounts for the authorized user.
    $accounts = $analytics->management_accounts->listManagementAccounts();

    if (count($accounts->getItems()) > 0) {
        $items = $accounts->getItems();
        $firstAccountId = $items[0]->getId();

        // Get the list of properties for the authorized user.
        $properties = $analytics->management_webproperties
        ->listManagementWebproperties($firstAccountId);

        if (count($properties->getItems()) > 0) {
            $items = $properties->getItems();
            $firstPropertyId = $items[0]->getId();

            // Get the list of views (profiles) for the authorized user.
            $profiles = $analytics->management_profiles
            ->listManagementProfiles($firstAccountId, $firstPropertyId);

            if (count($profiles->getItems()) > 0) {
                $items = $profiles->getItems();

                // Return the first view (profile) ID.
                return $items[0]->getId();

            } else {
                throw new Exception('No views (profiles) found for this user.');
            }
        } else {
            throw new Exception('No properties found for this user.');
        }
    } else {
        throw new Exception('No accounts found for this user.');
    }
}

function getResults(&$analytics, $profileId) {
    // Calls the Core Reporting API and queries for the number of sessions
    // for the last seven days.
    return $analytics->data_ga->get(
    'ga:' . $profileId,
    '7daysAgo',
    'today',
    'ga:sessions');
}

function printResults(&$results) {
    // Parses the response from the Core Reporting API and prints
    // the profile name and total sessions.
    if (count($results->getRows()) > 0) {

        // Get the profile name.
        $profileName = $results->getProfileInfo()->getProfileName();

        // Get the entry for the first entry in the first row.
        $rows = $results->getRows();
        $sessions = $rows[0][0];

        // Print the results.
        print "<p>First view (profile) found: $profileName</p>";
        print "<p>Total sessions: $sessions</p>";
    } else {
        print "<p>No results found.</p>";
    }
}

我对“oauth2callback.php”的代码:

<?php
require_once '../vendor/autoload.php';

// Start a session to persist credentials.
session_start();

// Create the client object and set the authorization configuration
// from the client_secrets.json you downloaded from the Developers Console.
$client = new Google_Client();
$client->setAuthConfigFile('../config/client_secrets.json');
$client->setRedirectUri('http://' . $_SERVER['HTTP_HOST'] . '/oauth2callback.php');
$client->addScope('https://www.googleapis.com/auth/analytics.readonly');

// Handle authorization flow from the server.
if (! isset($_GET['code'])) {
    $auth_url = $client->createAuthUrl();
    header('Location: ' . filter_var($auth_url, FILTER_SANITIZE_URL));
} else {
    $client->authenticate($_GET['code']);
    $_SESSION['access_token'] = $client->getAccessToken();
    $redirect_uri = 'http://' . $_SERVER['HTTP_HOST'] . '/';
    header('Location: ' . filter_var($redirect_uri, FILTER_SANITIZE_URL));
}

所有这些代码都来自第一个网站示例,除了一些小的补充,以使其与我的系统匹配。

任何人都知道如何摆脱这个错误?我做错了什么?

3 个答案:

答案 0 :(得分:4)

请记住,就谷歌而言,“你的”服务器是恶意的,直到你将其命名为“友好”,你必须明确地将OAuth呼叫的所有可能来源列入白名单。

谷歌是一名俱乐部保镖,一个大而丑陋,不可动摇的保镖,其客人名单会对您的申请说:“如果您的确切姓名或身份证明在列表中,我将只处理您的请求”

您是否尝试过不仅包括localhost,还包括所有其他可能的来源?

您必须列出网址“root”的所有可能变体,包括显式IP。

http://www.example.com
http://example.com
https://example.com
https://www.example.com
http://222.111.0.111
...

别忘了包含

https://accounts.google.com:443

答案 1 :(得分:3)

只需从错误屏幕复制发生错误的请求URI,然后将其粘贴到OAuth凭据“授权重定向URI”

现在运行该应用。 这对我有用。希望我回答你的问题。

答案 2 :(得分:2)

请求中的重定向Uri必须与您存储的一个Uri完全相同。

我在您的请求中看到了您错过的存储空间的末尾/。