According to the Mobile App Google documentation , there is a parameter named redirect_uri
which is not clear to me. For example, in the Web App flow of Google OAuth2, the procedure is some communication between front-end, back-end, and google server. In fact, the backend prepares two endpoints one for redirecting to the google auth page which will be called by the frontend, and another endpoint is /oauth2callback
which will be called by the google server as a redirect_uri
.
My question is, what's the redirect_uri
in the Mobile App flow? Is it the same with my backend /oath2callback
or Mobile App flow doesn't need any backend part?
[NOTE]:
Actually, I am going to receive credential stuff from the mobile side including access_token, refresh_token, etc, into the backend and store it into the db and use it for calling google API on the server side.
[UPDATE]
Here's the flow I've implemented:
The redirect uri is actually not differentiated by whether it's backend or frontend.
When you create authz credentials in Google, you're supposed to define the redirect method and the uri itself. Here's the type google suggests from the doc you linked:
Custom URI scheme (Android, iOS, UWP) A custom URI scheme is recommended for Android apps, iOS apps, and Universal Windows Platform (UWP) apps.
The uri scheme tells the OS that when it sees a matching url, open a particular app (rather than the browser).
Obviously, if you're using the mobile phone's web browser for the flow, then you needn't worry about the custom scheme. This is even the preferred method in the native apps rfc .
I think what you want to achieve can be done in the following way:
Implement the Authorization Request on the Mobile app, and set redirect_uri in a way that redirects back to your app, ie: claim that url with your app. When you get the auth code in your app, send that auth code to your backend, and do the token request from your backend. That way, you'll have all tokens on the backend.
The flow is:
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.