堆栈内存溢出
  简体   繁体   English

如何刷新服务器端(JAVA)上的access_token?

[英]How to refresh access_token on server side(JAVA)?

 原文  2018-10-27 06:05:51       spring-boot/ google-drive-api/ google-signin

问题描述

I am using a spring boot as my backend application. 我正在使用Spring Boot作为后端应用程序。 I have stored our client's access_token , refresh_token , and access_id in my postgresql database. 我已经将客户端的access_tokenrefresh_tokenaccess_id存储在我的postgresql数据库中。

Here is my code trying to get the new access token if token expired. 这是我的代码,如果令牌已过期,则试图获取新的访问令牌。 

public void refreshGoogleIdToken(GoogleAuthEntity googleAuthEntity) {
        LOGGER.debug("GoogleAuthService.refreshGoogleIdToken()");
        GoogleCredential credential = new GoogleCredential.Builder()
                .setTransport(transport)
                .setJsonFactory(jsonFactory)
                .setClientSecrets(googleAuthClientId, googleAuthClientSecret)
                .build();
        credential.setAccessToken(googleAuthEntity.getAccessToken());
        credential.setRefreshToken(googleAuthEntity.getRefreshToken());
        try {
            if (credential.refreshToken()) {
                Long newExpireTime = credential.getExpirationTimeMilliseconds();
                String newAccessToken = credential.getAccessToken();
                String newRefreshToken = credential.getRefreshToken();
                LOGGER.debug("NewAccessToken: " + newAccessToken);
                LOGGER.debug("NewRefreshToken: " + newRefreshToken);
                LOGGER.debug("NewExpireTime: " + newExpireTime);
            }
        } catch (IOException e) {
            LOGGER.debug("GoogleAuthService.refreshGoogleIdToken() - IOException");
            e.printStackTrace();
        }
    }

Google return 400 error, and the description is: 400 Bad Request Google返回400错误,描述为:400错误的请求 

{
  "error" : "invalid_grant",
  "error_description" : "Bad Request"
}

What mistake that I have make? 我犯了什么错误? Thanks 谢谢

1 个解决方案

解决方案1
 0  2018-10-27 08:46:51

I have been using OAuth2 with spring framework and have only encountered this error "Invalid grant" in case if refresh token is invalid, expired, revoked or does not match the redirection uri used in the authorization request, or is issued to another client 我一直在将OAuth2与spring框架一起使用,并且仅在刷新令牌无效,已过期,已吊销或与授权请求中使用的重定向uri不匹配,或发给另一个客户端的情况下才遇到此错误“无效授权”

For your situation I think you should delete the stored refresh token / rectify it and debug your code again. 根据您的情况,我认为您应该删除存储的刷新令牌/对其进行更正,然后再次调试代码。 This may be due to wrong token info stored in your PostgreSQL database while testing. 这可能是由于测试时存储在PostgreSQL数据库中的令牌信息错误所致。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何在 Oauth2.0 中使用 refresh_token 重新生成 access_token - How to re generate access_token in Oauth2.0 with refresh_token springboot oauth如何验证access_token - springboot oauth how to validate access_token 带有外部身份提供者的 Keycloak - 没有来自服务器的 access_token - Keycloak with external identity provider - No access_token from server 如何在access_token JWT中添加更多数据 - How to add more data in access_token JWT 在 access_token 中检索 Keycloak 属性 - Retrieve Keycloak attributes in access_token jhipster oauth:我如何通过CURL获取access_token - jhipster oauth : How can i get the access_token via CURL 如何在Web API中验证access_token(Azure AD OAuth 2.0)? - How to validate access_token(Azure AD OAuth 2.0) in web API? Keycloak - 如何使用 Java 客户端刷新令牌? - Keycloak - How to refresh token witj Java client? 春天如何在oauth2中使用刷新令牌更新访问令牌? - How to renew access token with the refresh token in oauth2 in spring? Cas 5.x:如何获取访问令牌和刷新令牌? - Cas 5.x: How to get access token and refresh token?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM