带有 spring security 5 和 oauth2 的日历客户端

Question

I managed to configure google spring security 5 with outh2 to connect to google. I have the ability to save access_token. In the first step of my application we do not request calendar permissions. We do not want to obtain them until later. I have seen many strange examples using webClient, resttemplate, examples that are already deprected.

I am looking for a solution where I can use access_token and refresh_token for the application to request access to the calendar, and then I can download eg events.

I am using a reactjs. I would like it to redirect me to the google site to give me permission and then be able to download events after another click on the front page.

EDIT: Answer is:

Credential credential = new Credential(BearerToken.authorizationHeaderAccessMethod());
        credential.setAccessToken("your token");
        credential.setRefreshToken("your refresh token");
        httpTransport = GoogleNetHttpTransport.newTrustedTransport();
        client = new com.google.api.services.calendar.Calendar.Builder(httpTransport, JSON_FACTORY, credential)
                .setApplicationName(APPLICATION_NAME).build();

Answer 1

Google supports incremental authorization , so if you initiate the OAuth flow again with the new permissions and the include_granted_scopes parameter set to true, you can add the new permissions onto your existing authorization.

Alternatively, you can use a managed solution like Xkit to add this kind of integration. It handles the OAuth flow for you (with incremental authorization built in) as well as refresh tokens, and it integrates natively with React. (Disclosure: I work there!)