How to reset google oauth 2.0 authorization?

google-api oauth-2.0 google-oauth google-api-client
36,226

Solution 1

Try revoking an access token, that should revoke the actual grant so auto-approvals will stop working. I assume this will solve your issue.

https://developers.google.com/accounts/docs/OAuth2WebServer#tokenrevoke

Solution 2

Its very simple. Just revoke the access.

void RevokeAcess()
{
    try{
    HttpClient client = new DefaultHttpClient();
    HttpPost post = new HttpPost("https://accounts.google.com/o/oauth2/revoke?token="+ACCESS_TOKEN);
    org.apache.http.HttpResponse response = client.execute(post);
    }
    catch(IOException e)
    {
    }
}

But it should be in asyncTask

Solution 3

It depends what you mean by resetting authorization. I could think of a three ways of doing this:

  1. Remove authorization on the server
    Go to myaccount.google.com/permissions, find your app and remove it. The next time you try to sign in you have to complete full authorization flow with account chooser and consent screen.

  2. Sign out on the client
    gapi.auth2.getAuthInstance().signOut();
    In this way Google authorization server still remembers your app and the authorization token remains in browser storage.

  3. Sign out and disconnect
    gapi.auth2.getAuthInstance().signOut();
    gapi.auth2.getAuthInstance().disconnect();
    This is equivalent to (1) but on the client.

Share:
36,226
ZavtraMen
Author by

ZavtraMen

Updated on July 09, 2022

Comments

  • ZavtraMen
    ZavtraMen almost 2 years

    I'm using Google APIs Client Library for JavaScript (Beta) to authorize user google account on web application (for youtube manipulations). Everything works fine, but i have no idea how to "logout" user from my application, i.e. reset access tokens.

    For example, following code checks user authorization and if not, shows popup window for user to log into account and permit web-application access to user data:

    gapi.auth.authorize({client_id: CLIENT_ID, scope: SCOPES, immediate: false}, handleAuth);

    But client library doesn't have methods to reset authorization.

    There is workaround to redirect user to "accounts.google.com/logout", but this approach is not that i need: thus we logging user off from google account not only from my application, but also anywhere.

    Google faq and client library description neither helpful.

  • Nacho Coloma
    Nacho Coloma over 9 years
    For a JavaScript solution, see this other question: stackoverflow.com/questions/12809339/…
  • Jay Patel
    Jay Patel over 5 years
    How to revoke credentials with access token?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Restore deleted (?) Google OAuth client app for production system
Using Postman to access OAuth 2.0 Google APIs
Unable to refresh OAuth2 token in PHP, invalid grant
POSTMAN, OAuth2 and Google Directory API
PHP : Google plus Oauth 2.0 - Getting Error fetching OAuth2 access token, message: 'invalid_client'
How to get Google OAuth 2.0 Access token directly using curl? (without using Google Libraries)
Sign in with Google temporarily disabled for this app
Restrict Login Email with Google OAuth2.0 to Specific Domain Name
Why do access tokens expire?
Invalid JWT when trying to connect to Google Oauth for google API