![](/img/trans.png)
[英]403 error from Google Admin SDK with AppAssertionCredentials
[英]Python Google Admin SDK 403 Error
我試圖檢索組的所有成員但收到錯誤。
這是我的代碼:
# -*- coding: utf-8 -*-
from __future__ import print_function
import httplib2
import os
from apiclient import discovery
import oauth2client
from oauth2client import client
from oauth2client import tools
try:
import argparse
flags = argparse.ArgumentParser(parents=[tools.argparser]).parse_args()
except ImportError:
flags = None
# If modifying these scopes, delete your previously saved credentials
# at ~/.credentials/admin-directory_v1-python-quickstart.json
SCOPES = 'https://www.googleapis.com/auth/admin.directory.group.member.readonly'
CLIENT_SECRET_FILE = 'client_secret.json'
CRED_SAVE = 'cred_save.json'
APPLICATION_NAME = 'Directory API Python Quickstart'
def get_credentials():
"""Gets valid user credentials from storage.
If nothing has been stored, or if the stored credentials are invalid,
the OAuth2 flow is completed to obtain the new credentials.
Returns:
Credentials, the obtained credential.
"""
home_dir = os.path.expanduser('~')
credential_dir = os.path.join(home_dir, '.credentials')
if not os.path.exists(credential_dir):
os.makedirs(credential_dir)
credential_path = os.path.join(credential_dir,
CRED_SAVE)
store = oauth2client.file.Storage(credential_path)
credentials = store.get()
if not credentials or credentials.invalid:
flow = client.flow_from_clientsecrets(CLIENT_SECRET_FILE, SCOPES)
flow.user_agent = APPLICATION_NAME
if flags:
credentials = tools.run_flow(flow, store, flags)
else: # Needed only for compatibility with Python 2.6
credentials = tools.run(flow, store)
print('Storing credentials to ' + credential_path)
return credentials
def get_remote_users(service, http, group="all.faculty@myorg.jp"):
request = service.members().list(groupKey=group).execute()
def main():
"""Shows basic usage of the Google Admin SDK Directory API.
Creates a Google Admin SDK API service object and outputs a list of first
10 users in the domain.
"""
credentials = get_credentials()
http = credentials.authorize(httplib2.Http())
service = discovery.build('admin', 'directory_v1', http=http)
users = get_remote_users(service, http)
if not users:
print('No users in the domain.')
else:
print('Users:')
for user in users:
print('{0} ({1})'.format(user['primaryEmail'],
user['name']['fullName']))
if __name__ == '__main__':
main()
這是錯誤:
Traceback (most recent call last):
File "/Users/user/Documents/workspace/module/groups_members.py", line 84, in <module>
main()
File "/Users/user/Documents/workspace/module/groups_members.py", line 72, in main
users = get_remote_users(service, http)
File "/Users/user/Documents/workspace/module/groups_members.py", line 58, in get_remote_users
request = service.members().list(groupKey=group).execute()
File "/Library/Frameworks/Python.framework/Versions/3.5/lib/python3.5/site-packages/oauth2client/util.py", line 137, in positional_wrapper
return wrapped(*args, **kwargs)
File "/Library/Frameworks/Python.framework/Versions/3.5/lib/python3.5/site-packages/googleapiclient/http.py", line 832, in execute
raise HttpError(resp, content, uri=self.uri)
googleapiclient.errors.HttpError: <HttpError 403 when requesting https://www.googleapis.com/admin/directory/v1/groups/all.faculty%40myorg.jp/members?alt=json returned "Insufficient Permission">
知道我為什么會收到403錯誤嗎? 據我所知,我在正確的范圍內,我已經存儲了正確的json auth文件。 我還可以使用此代碼執行列表用戶等其他操作,但不會收到403錯誤。
也許我需要做一些額外的身份驗證。
任何幫助將非常感激。
干杯
我顯然無法閱讀。
通過刪除〜/ .credentials /中的憑據解決了這個問題
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.