Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

how to handle redirect_uri_mismatch error when Android app obtains offline access for Web back-end?

Tags:

android

oauth-2.0

google-oauth

I wanted to implement a flow described in this question:

Authenticating with OAuth2 for an app *and* a website

Google solution for this requirement was described in here:

https://developers.google.com/identity/protocols/CrossClientAuth#offlineAccess

I followed this guide but unfortunately when I use the authorization code in backend to get access to the token and refresh the token from google, google throw this error:

{
  "error": "invalid_request",
  "error_description": "Missing parameter: redirect_uri"
}

redirect_uri has no meaning for this situation because the client-side is android.

There is also some advice who they said use "postmessage" as redirect uri or use http://localhost as redirect uri or add server address in redirect URIs in your google app console, but none works for this flow.

like image 447
Mohammad Reza Esmaeilzadeh Avatar asked May 12 '15 15:05

Mohammad Reza Esmaeilzadeh

2 Answers

Spend two days and researched almost all issues on stackoverflow and google before deeply investigated AppAuth library (https://openid.github.io/AppAuth-iOS/ and https://openid.github.io/AppAuth-Android/) and finally found an answer.

So, there are two rules I've found:

  1. redirect_uri should be one of :

    • your app bundle_id or package_name + :/ or :// + *your_path* (for example com.example.myapp://google_auth)
    • your client_id in reverse DNS form + :/ or :// + *your_path* (for example com.googleusercontent.apps.*account_id*:/my_path)

  2. redirect_uri in initial authorization code request (https://accounts.google.com/o/oauth2/v2/auth) and in authorization code exchange request (https://www.googleapis.com/oauth2/v4/token) must be totally the same

like image 127
Bazhen Rzheutskiy Avatar answered Sep 19 '22 00:09

Bazhen Rzheutskiy

I spend many times for solving this problem and this tool (https://developers.google.com/oauthplayground) has been provided by google makes me more miss lead because it was designed for main web flow and access token been generated by this tool was different and needs redirect uri. (even if using bearer token type and using client id and secret) after all I user empty string ("") as redirect url and finally I succeed to get access token through server side.

like image 37
Mohammad Reza Esmaeilzadeh Avatar answered Sep 22 '22 00:09

Mohammad Reza Esmaeilzadeh
Sign in to Comment

Related questions

Firebase gets stuck on no INTERNET connection
Android DataBinding & MVVM - Using same name for layout files in different layout folders
Is there a way to get existing window insets after dispatch?
RecyclerView with items of different height: Scrollbar
Chrome Mobile, Change System Navigation Bar (Back, Home, Recent Buttons) Background Color?
Sample usage of WebViewCompat
In-app updates check whether it is AppUpdateType.FLEXIBLE or AppUpdateType.IMMEDIATE
Getting Security exception while trying to fetch networkcapabilities on android 11
Android PDF reader from scratch
Record phone calls on android phone?
best practice for specifying pronunciation for Android TTS engine?
What will happen to existing connections when switch between 3g/wifi
Continuous Integration for Android via TeamCity. Preferred tools?
Turn ON/OFF Camera LED/flash light in Samsung Galaxy Ace 2.2.1 & Galaxy Tab
Using Google Breakpad for Android NDK?
Manage code/build for Android app stores (Google/Amazon/etc)?
Google Maps Android API v2 SupportMapFragment memory leak
Delphi XE5 right to left languages don't appear as they should in android
Prevent Android phone from connecting to WiFi network unless my app approves it?
Paste from AccessibilityService works in API22 does not work in API17

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!