Comments on: GMail and Google Calendar with OpenID and OAuth http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/ Et innblikk i hva som skjer i BEKK Mon, 26 Jul 2010 10:03:42 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Thor Marius Henrichsen http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-191 Thor Marius Henrichsen Tue, 27 Apr 2010 13:55:48 +0000 http://open.bekk.no/?p=2242#comment-191 @Antal: The code for doing OAuth is shared on GitHub. Checkout http://github.com/thormarius/oo for the code and http://oo-demo.heroku.com/ for an example on a live app that implements OpenID+OAuth with GMail and calendar feed. @Antal: The code for doing OAuth is shared on GitHub. Checkout http://github.com/thormarius/oo for the code and http://oo-demo.heroku.com/ for an example on a live app that implements OpenID+OAuth with GMail and calendar feed.

]]> By: Antal Kiss http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-190 Antal Kiss Thu, 22 Apr 2010 19:26:57 +0000 http://open.bekk.no/?p=2242#comment-190 Hi there! We just face the same problem, we can't implement the authorization process to the gmail feeds. @Thor Could you upload the code, how to implement the gmail feeds with the GApps accounts? thanks Hi there!
We just face the same problem, we can’t implement the authorization process to the gmail feeds.

@Thor
Could you upload the code, how to implement the gmail feeds with the GApps accounts?
thanks

]]> By: Thor Marius Henrichsen http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-162 Thor Marius Henrichsen Fri, 19 Feb 2010 09:01:24 +0000 http://open.bekk.no/?p=2242#comment-162 @Shyam We have actually implemented this with a GApps account. It's a while since we did this now, so I don't remember all the nitty gritty details. What I do remember is that we had the same problem until we figured out that we had to publish a xrds document at http://example.com/openid in order for the discovery to work. Google will access this URL in the openid discovery process. There's also something about a host-meta document that should be hosted on http://example.com/.well-known/host-meta, but I don't remember if the latter is really neccessary. Checkout http://nith.no/openid and http://nith.no/.well-known/host-meta for an example on how we did it. @Shyam

We have actually implemented this with a GApps account. It’s a while since we did this now, so I don’t remember all the nitty gritty details. What I do remember is that we had the same problem until we figured out that we had to publish a xrds document at http://example.com/openid in order for the discovery to work. Google will access this URL in the openid discovery process.

There’s also something about a host-meta document that should be hosted on http://example.com/.well-known/host-meta, but I don’t remember if the latter is really neccessary.

Checkout http://nith.no/openid and http://nith.no/.well-known/host-meta for an example on how we did it.

]]> By: Shyam Krishna Khadka http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-151 Shyam Krishna Khadka Tue, 09 Feb 2010 03:01:44 +0000 http://open.bekk.no/?p=2242#comment-151 No I couldn't find a way so that open Id authentication gets successful with google apps accout. I changed IDENTITY URL to "https://www.google.com/accounts/o8/site-xrds?hd=mydomain.com" which redirects user to Google Apps login page instead of Google login page and goes for OAuth process as in step #3 of above example.But when I click allow button,It says open Id Authentication failed. Any ideas???? No I couldn’t find a way so that open Id authentication gets successful with google apps accout.
I changed IDENTITY URL to “https://www.google.com/accounts/o8/site-xrds?hd=mydomain.com” which redirects user to Google Apps login page instead of Google login page and goes for OAuth process as in step #3 of above example.But when I click allow button,It says open Id Authentication failed.
Any ideas????

]]> By: Aslak Hellesøy http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-150 Aslak Hellesøy Mon, 08 Feb 2010 13:17:17 +0000 http://open.bekk.no/?p=2242#comment-150 Shyam, I haven't tested if use you Google Apps credentials to log into a site that uses Google as OpenID provider. I would think you can. If you have a Google Apps account you can try it out with our demo app. Shyam,

I haven’t tested if use you Google Apps credentials to log into a site that uses Google as OpenID provider. I would think you can. If you have a Google Apps account you can try it out with our demo app.

]]> By: Shyam Krishna Khadka http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-149 Shyam Krishna Khadka Fri, 05 Feb 2010 10:57:29 +0000 http://open.bekk.no/?p=2242#comment-149 Thanks for nice article. But I wonder if there is a way so that users can login with their Google Apps account as well using Open ID + OAuth as in your example. Any suggestions are highly welcomed!! Thanks for nice article.
But I wonder if there is a way so that users can login with their Google Apps account as well using Open ID + OAuth as in your example.
Any suggestions are highly welcomed!!

]]> By: Aslak Hellesøy http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-124 Aslak Hellesøy Thu, 14 Jan 2010 16:07:48 +0000 http://open.bekk.no/?p=2242#comment-124 Thanks Rune. I'll try this out the next time I use OAuth. You're right that it might be a hybrid protocol thing - I haven't really tried OAuth against any other OAuth providers. Thanks Rune. I’ll try this out the next time I use OAuth. You’re right that it might be a hybrid protocol thing – I haven’t really tried OAuth against any other OAuth providers.

]]> By: Rune Botten http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-121 Rune Botten Wed, 13 Jan 2010 10:29:50 +0000 http://open.bekk.no/?p=2242#comment-121 I dont think you're absolutely right about the OAuth consumer secret being tied to the registered domain, it can be used from localhost. It is tied to the registered domain in the sense that you can only redirect to that domain after authorization at Google. In that redirect is an oauth_verifier get-param which you need for swapping an authorized request token for an access token. Once you have that access token though, you can use it locally. I just confirmed this in IRB locally doing YouTube Data API requests with an access token, after copy-pasting the oauth_verifier from the Google redirect to my registered Heroku domain. The request token was created and swapped for an access token locally. If you plug something like Mechanize in there to authorize at Google and get the verifier from the redirect, you'd have at least the OAuth thing going for you locally. The hybrid protocol might be a whole other thing. I wrote a blog post on Ruby, OAuth and YouTube which should supply the needed info, http://runerb.com/2010/01/12/ruby-oauth-youtube. I dont think you’re absolutely right about the OAuth consumer secret being tied to the registered domain, it can be used from localhost. It is tied to the registered domain in the sense that you can only redirect to that domain after authorization at Google. In that redirect is an oauth_verifier get-param which you need for swapping an authorized request token for an access token.

Once you have that access token though, you can use it locally. I just confirmed this in IRB locally doing YouTube Data API requests with an access token, after copy-pasting the oauth_verifier from the Google redirect to my registered Heroku domain. The request token was created and swapped for an access token locally. If you plug something like Mechanize in there to authorize at Google and get the verifier from the redirect, you’d have at least the OAuth thing going for you locally.

The hybrid protocol might be a whole other thing.

I wrote a blog post on Ruby, OAuth and YouTube which should supply the needed info, http://runerb.com/2010/01/12/ruby-oauth-youtube.

]]> By: shyam krishna khadka http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-115 shyam krishna khadka Wed, 06 Jan 2010 02:58:53 +0000 http://open.bekk.no/?p=2242#comment-115 Sorry i couldn't find any way to work with localhost. I tried with several options but it didn't work for me with reference to this documentation http://code.google.com/apis/accounts/docs/OAuth_ref.html#SigningOAuth Instead i deployed the application and made hybrid protocol work. Sorry i couldn’t find any way to work with localhost.
I tried with several options but it didn’t work for me with reference to this documentation http://code.google.com/apis/accounts/docs/OAuth_ref.html#SigningOAuth
Instead i deployed the application and made hybrid protocol work.

]]> By: Thor Marius Henrichsen http://open.bekk.no/2009/12/18/gmail-and-google-calendar-with-openid-and-oauth/comment-page-1/#comment-114 Thor Marius Henrichsen Tue, 05 Jan 2010 07:11:16 +0000 http://open.bekk.no/?p=2242#comment-114 @shyam: There might be a way of making it work from localhost, but we did not figure out how to accomplish this. It seems like the oauth secret key is bound to the domain making the oauth request. Instead we deployed our app to Heroku so that we could easily develop - deploy - run the application in a short cycle. If you find a way to make the hybrid protocol work from localhost please let us know! @shyam: There might be a way of making it work from localhost, but we did not figure out how to accomplish this. It seems like the oauth secret key is bound to the domain making the oauth request. Instead we deployed our app to Heroku so that we could easily develop – deploy – run the application in a short cycle.

If you find a way to make the hybrid protocol work from localhost please let us know!

]]>