Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Google authentification always ask authorization despite prompt has no value

Tags:

node.js

oauth

google-api

google-oauth

After having connected a user from Google OAuth, when this one wishes to reconnect during a next session requiring the selection of his google account, the permission is asked again.

According to the documentation, the behavior of the parameter prompt that is responsible for authorization requests is as follows:

If no value is specified and the user has not previously authorized access, then the user is shown a consent screen.

The user should therefore not have to reorder his consent (with verification, the application is present in my authorizations).

The only answer envisaged was the one on this question : login with google always asks user consent

Because I also work locally without secure HTTP, but he assumes that a cookie policy is present which is not the case.

Code generating URL 

/**
 * Create a new OAuth2Client with the credentials previously loads
 */
private getOAuth2() : OAuth2Client {
    return new OAuth2(
        this.credentials.client_secret,
        this.credentials.client_id,
        this.credentials.redirect_uris[0]
    );
}

/**
 * Create connection URL for the given scopes
 * @param scopes
 */
public url(scopes: Array<string>) : string {
    return this.client.generateAuthUrl({
            access_type: "offline",
            scope: scopes
    });
}



// The scope used to generate URL is 'https://www.googleapis.com/auth/youtube.readonly'

// this.client refer to a client which is load by getOAuth2
// and use only for the generation of URL's.

When a user logs in a second time, to obtain a refresh token that has been lost, he or she is not required to give consent again :

enter image description here

And that is the problem which occur.

like image 666
Neok Avatar asked Aug 29 '18 17:08

Neok

1 Answers

TBH, I didn't understand your problem clearly. But, I'm sure that you must be dealing with two different tokens. As it is OAuth, at first you'll get access token from Google upon successful user authentication.

You're supposed to use that access token to get user information from Google. But by default access token has some expiration time, beyond which the user has to reauthorize your app. I suspect that's what happens in your case.

You can renew your access token by making use of refresh token which you'll get when you get consent from the user.

You can get detailed information in this blog post written by me, https://www.syncwithtech.org/authorizing-google-apis/

I hope this may help you in some way.

like image 90
vicke4 Avatar answered Sep 27 '22 18:09

vicke4
Sign in to Comment

Related questions

How to trigger a function whenever a mongoose document is updated
typescript do not replace non-relative paths defined in tsconfig
Routing in ReactJS
Streaming-s3 is not uploading file to aws properly
Webpack HMR Throws React syntheticEvent Error Due To jsPDF
How to play mp4 video in html video tag in which the video is uploaded via multer
How do I setup Apache CouchDB to run on Heroku?
Modifying user.username in Session With PassportJS
Session is not correctly obtained from a storage, using express-session and passportjs
Kinesis Lambda Consumer Minimum Batch Size
SerialPort 'close' event never fire
Calculate the most comfortable finger positions for a guitar chord in a chord progression
Client is not receiving event from SocketIO via IIS Node
node cmd getting hangs while doing 'npm install' at fsevents point
How to validate whether a username is unique using joi?
How to detect circular references in JavaScript
How to use doMock in jest?
browserify and babelify very slow due to large data js files
Location Proxy with npm serve
Remove a line of a csv or ignore it

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!