使用 OAuth Playground 从多个 MCC 向 google API 进行身份验证
[英]Authentication to google API from multiple MCCs using OAuth Playground
问题描述
I have a web app that is required to upload offline conversions using Google Ads API to different Google MCC accounts managed by different agencies.
我有一个 web 应用程序,它需要使用 Google Ads API 将离线转化上传到由不同机构管理的不同 Google MCC 帐户。 I would like to authenticate to their accounts to allow this action without the need to create the consent OAuth2 screen to obtain the token.我想对他们的帐户进行身份验证以允许此操作,而无需创建同意 OAuth2 屏幕来获取令牌。 the agencies do not have access to my system (their clients do).代理商无法访问我的系统(他们的客户可以)。 I would like to know beforehand, if it is possible to use my client Id and client secrete to generate a refresh token in their account using OAuth playground and submit this refresh token when I authenticate to Google API.我想事先知道,是否可以使用我的客户端 ID 和客户端秘密在他们的帐户中使用 OAuth 操场生成刷新令牌,并在我向 Google API 进行身份验证时提交此刷新令牌。 does it make sense?是否有意义?
1 个解决方案
解决方案1
1 2021-11-30 09:04:39
is possible to use my client Id and client secrete to generate a refresh token in their account using OAuth playground?
Yes in the upper right hand corer you can supply your client id and client secret.是的,在右上角的取芯器中,您可以提供您的客户端 ID 和客户端密码。 However the owner of the account will need to run it though as they will need to login and consent.但是,帐户的所有者将需要运行它,因为他们需要登录并同意。 You will then get a refresh token back that you can use.然后,您将获得一个可以使用的刷新令牌。
You will then be able to use in your code this refresh token to request a new access token that you can use to access the api.然后,您将能够在您的代码中使用此刷新令牌来请求一个新的访问令牌,您可以使用它来访问 api。
does it make sense?
In a way yes in a way no.在某种程度上是的,在某种程度上不是。 The issue you will have is if the refresh token expires, yes they can expire rarely but it can happen your code will need to take that into account and you will have to contact the author of the account to request a new refresh token.您将遇到的问题是刷新令牌是否过期,是的,它们很少会过期,但您的代码可能需要考虑到这一点,您必须联系帐户的作者以请求新的刷新令牌。 IMO it would be better for you to put up an authorization end point for your users on the web which they can authorize your app and then you can store their refresh token in the database. IMO 最好在 web 上为您的用户设置一个授权端点,他们可以授权您的应用程序,然后您可以将他们的刷新令牌存储在数据库中。
Using the oauth2 playground for this is a messy design IMO.为此使用 oauth2 操场是一个混乱的设计 IMO。
verification.确认。
Now depending upon which scopes you are going to be using your app will need to be verified.现在取决于您将要使用您的应用程序的范围,需要验证。 Google is going to want to see your authorization in action.谷歌希望看到你的授权在行动。 I have doubts wither or not they will consider your using the Oauth2 playground as a valid authorization end point of your app.我怀疑他们是否会考虑使用 Oauth2 Playground 作为应用程序的有效授权端点。
That being said if you do go though this please let me know if they allow it or not.话虽如此,如果您这样做 go ,请告诉我他们是否允许。 (Note: I have an email out to Google to find out if this is even valid use case. Will update if and when i hear back.) (注意:我有一个 email 向 Google 发送,以了解这是否是有效的用例。如果我收到回复,将更新。)
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.