wxpython 应用 应用 google gauth 认证
添加时间:2013-5-9 点击量:
比来在用wxpyhon google 接洽人应用, 不克不及避免的碰到了应用oauth 验证的题目。
起首贴一下关于 OAuth 2.0 的官方文档 https://developers.google.com/accounts/docs/OAuth2
然后再贴一下 中文文档 http://blog.csdn.net/totogogo/article/details/6860966
Google供给下列4种体式格式的OAuth 2.0:
- The Client-side Applications flow for JavaScript applications running in a browser
该flow实用于那些Javascript-based web app,这种app因为以javascript为主,不须要maintain state over time (例如不须要用session来存储state)。
- The Web Server Applications flow for web applications with servers that can securely store persistent information
This flow is meant for web applications with servers that can keep secrets and maintain state.
- The Installed Applications flow for desktop and mobile applications
This flow is meant for mobile, and desktop installed applications that wantaccess to user data.
- The OAuth 2.0 for Devices flow。
该flow实用于那些想access google data的application
which运行在device上,但无法进行用户授权(e.g. game consoles or media hubs), 须要应用另一个PC
or device来进行用户授权的动作的case。
英文原文:This flow is suitable for applications executing on devices
which wantaccess to user data, but dont have an easy data-entry method
(e.g. game consoles or media hubs), and where the end-user has separate
access to a user-agent on another computer or
device (e.g. home computer, a latop, or asmart phone).
因为我应用的是wxpython 是第三种安装的应用法度,就只说一下这个的应用办法。
这里获取access token有两种体式格式,一种是应用 http 恳求, 另一种是应用 gdata.gauth
http 恳求斗劲灵活, 然则斗劲合适在线应用, 保存token 也斗劲麻烦, 起首说一下http 恳求的应用体式格式
step1 发送用户信息 到 OAuth
#示例
def gen_url(url, data):
生成url-
params = &.join([str(arg)+=+str(val) for arg, val in data.items()])
url = url + ? + params
return url
url = https://accounts.google.com/o/oauth2/auth
datas = {
client_id=21302922996.apps.googleusercontent.com
redirect_uri=urn:ietf:wg:oauth:2.0:oob
scope=https://www.google.com/m8/feeds/
response_type=code
}
auth_url = gen_url(url, data)
webbrowser.open(auth_url)
参数
client_id 创建的应用id (若是还没创建应用 请点击上边上文链接查看如何创建)
redirect_uri 获取token后的跳转链接地址 安装的应用法度为 urn:ietf:wg:oauth:2.0:oob web应用这里应当是http 地址
scope 你要认证的API 这里应用的google contacts API 其它API scope 请查看 https://developers.google.com/oauthplayground/
response_type 响应类型 这里是code web应用为 token
step2 当上边的恳求发出后
会打开浏览器认证, 登录、授权、然后获取 authorization code
step3 获取authorization code 后 post 恳求https://accounts.google.com/o/oauth2/token
参数包含
code=4/P7q7W91a-oMsCeLvIaQm6bTrgtp6
client_id=21302922996.apps.googleusercontent.com
client_secret=XTHhXh1SlUNgvyWGwDk1EjXB
redirect_uri=https://www.example.com/back
grant_type=authorization_code
认证成功后会获得一个JSON object 内容如下
{
access_token:1/fFAGRNJru1FTz70BzhT3Zg,
expires_in:3600,
token_type:Bearer,
refresh_token:1/6BMfW9j53gdGImsixUH6kU5RsR4zwI9lUVX-tqf8JXQ
}
然后就可以用access_token 作为参数接见api了
以上是http 体式格式获取token的体式格式
如今我们介绍第二种 应用gdata.gauth 获取
应用代码的体式格式讲解吧,斗劲清楚一些
#!/usr/bin/python
# coding: utf8
File: contact_login.py
Author: goodspeed
Date: 20130505 17:00:36 CST
Description: google contacts login model
__future__ import unicode_literals
import wx
import webbrowser
import gdata.gauth
import atom.http_core
APP_NAME = YOUR App name
CLIENT_ID = YOUR CLIENT_ID
CLIENT_SECRET = YOUR CLIENT_SECRET
SCOPE = https://www.google.com/m8/feeds/
REDIRECT_URI = urn:ietf:wg:oauth:2.0:oob
OAUTH_URL = https://accounts.google.com/o/oauth2/auth
TOKEN_URO = https://accounts.google.com/o/oauth2/token
USER_AGENT = dummysample
def get_auth_code():
获取authorization code
auth_token = gdata.gauth.OAuth2Token(
client_id = CLIENT_ID,
client_secret = CLIENT_SECRET,
scope = SCOPE,
user_agent=,
)
redirect_uri = REDIRECT_URI
auth_url = auth_token.generate_authorize_url(redirect_uri=redirect_uri)
#在浏览器打开url 完成登录 授权步调 获取authorization code
webbrowser.open(auth_url)
def get_access_token(auth_token, auth_code):
用获得的 authorization code 获取access token 然后保存
redirect_url = %s?code=%s % (REDIRECT_URI, auth_code)
url = atom.http_core.ParseUri(redirect_url)
token = auth_token.get_access_token(url.query)
token = gdata.gauth.token_to_blob(auth_token)
return auth_token
#登录 进口
def singin():
#获取已保存token 弱没有token=None
try:
with open(token, r) as to:
token = to.read()
try:
token = gdata.gauth.token__blob(token)
except gdata.gauth.UnsupportedTokenType, e:
raise e
except:
token = None
#起首断定是否有已保存的token
#若是有直接应用 没有从头获取
if token:
auth_token = token
else:
auth_token = get_auth_code()
auth_code = enter_auth_code()
auth_token = get_access_token(auth_token, auth_code)
return auth_token
#将 authorization code 复制到dialog, 传回wxpyton
def enter_auth_code():
dialog = wx.TextEntryDialog(None,
enter authorization code!, enter authorization code,
, style=wx.OK|wx.CANCEL)
if dialog.ShowModal() == wx.ID_OK:
#返回 authorization code
return dialog.GetValue()
dialog.Destroy()
if __name__ == __main__:
singin()
如今就可以用auth_token来接见API了
#!/usr/bin/python
# -- coding: utf-8 --
File: contacts_operate.py
Author: goodspeed
Date: 2013-05-07 20:13:14 CST
Description: contacts data operate
__future__ import unicode_literals
import gdata.contacts.client as gd
login_contact import APP_NAME
def query_contacts(auth_token):
gd_client = gd.ContactsClient(source=APP_NAME)
gd_client = auth_token.authorize(gd_client)
query = gd.ContactsQuery(max_results=200)
feed = gd_client.GetContacts(q = query)
for i, entry in enumerate(feed.entry):
if entry.name:
print i, entry.name.full_name.text
就是这些。。如今正在进修若是有不合错误的处所请提示一下。感谢
所有随风而逝的都属于昨天的,所有历经风雨留下来的才是面向未来的。—— 玛格丽特·米切尔 《飘》
比来在用wxpyhon google 接洽人应用, 不克不及避免的碰到了应用oauth 验证的题目。
起首贴一下关于 OAuth 2.0 的官方文档 https://developers.google.com/accounts/docs/OAuth2
然后再贴一下 中文文档 http://blog.csdn.net/totogogo/article/details/6860966
Google供给下列4种体式格式的OAuth 2.0:
- The Client-side Applications flow for JavaScript applications running in a browser
该flow实用于那些Javascript-based web app,这种app因为以javascript为主,不须要maintain state over time (例如不须要用session来存储state)。
- The Web Server Applications flow for web applications with servers that can securely store persistent information
This flow is meant for web applications with servers that can keep secrets and maintain state.
- The Installed Applications flow for desktop and mobile applications
This flow is meant for mobile, and desktop installed applications that wantaccess to user data.
- The OAuth 2.0 for Devices flow。
该flow实用于那些想access google data的application
which运行在device上,但无法进行用户授权(e.g. game consoles or media hubs), 须要应用另一个PC
or device来进行用户授权的动作的case。
英文原文:This flow is suitable for applications executing on devices
which wantaccess to user data, but dont have an easy data-entry method
(e.g. game consoles or media hubs), and where the end-user has separate
access to a user-agent on another computer or
device (e.g. home computer, a latop, or asmart phone).
因为我应用的是wxpython 是第三种安装的应用法度,就只说一下这个的应用办法。
这里获取access token有两种体式格式,一种是应用 http 恳求, 另一种是应用 gdata.gauth
http 恳求斗劲灵活, 然则斗劲合适在线应用, 保存token 也斗劲麻烦, 起首说一下http 恳求的应用体式格式
step1 发送用户信息 到 OAuth
#示例
def gen_url(url, data):
生成url-
params = &.join([str(arg)+=+str(val) for arg, val in data.items()])
url = url + ? + params
return url
url = https://accounts.google.com/o/oauth2/auth
datas = {
client_id=21302922996.apps.googleusercontent.com
redirect_uri=urn:ietf:wg:oauth:2.0:oob
scope=https://www.google.com/m8/feeds/
response_type=code
}
auth_url = gen_url(url, data)
webbrowser.open(auth_url)
参数
client_id 创建的应用id (若是还没创建应用 请点击上边上文链接查看如何创建)
redirect_uri 获取token后的跳转链接地址 安装的应用法度为 urn:ietf:wg:oauth:2.0:oob web应用这里应当是http 地址
scope 你要认证的API 这里应用的google contacts API 其它API scope 请查看 https://developers.google.com/oauthplayground/
response_type 响应类型 这里是code web应用为 token
step2 当上边的恳求发出后
会打开浏览器认证, 登录、授权、然后获取 authorization code
step3 获取authorization code 后 post 恳求https://accounts.google.com/o/oauth2/token
参数包含
code=4/P7q7W91a-oMsCeLvIaQm6bTrgtp6
client_id=21302922996.apps.googleusercontent.com
client_secret=XTHhXh1SlUNgvyWGwDk1EjXB
redirect_uri=https://www.example.com/back
grant_type=authorization_code
认证成功后会获得一个JSON object 内容如下
{
access_token:1/fFAGRNJru1FTz70BzhT3Zg,
expires_in:3600,
token_type:Bearer,
refresh_token:1/6BMfW9j53gdGImsixUH6kU5RsR4zwI9lUVX-tqf8JXQ
}
然后就可以用access_token 作为参数接见api了
以上是http 体式格式获取token的体式格式
如今我们介绍第二种 应用gdata.gauth 获取
应用代码的体式格式讲解吧,斗劲清楚一些
#!/usr/bin/python
# coding: utf8
File: contact_login.py
Author: goodspeed
Date: 20130505 17:00:36 CST
Description: google contacts login model
__future__ import unicode_literals
import wx
import webbrowser
import gdata.gauth
import atom.http_core
APP_NAME = YOUR App name
CLIENT_ID = YOUR CLIENT_ID
CLIENT_SECRET = YOUR CLIENT_SECRET
SCOPE = https://www.google.com/m8/feeds/
REDIRECT_URI = urn:ietf:wg:oauth:2.0:oob
OAUTH_URL = https://accounts.google.com/o/oauth2/auth
TOKEN_URO = https://accounts.google.com/o/oauth2/token
USER_AGENT = dummysample
def get_auth_code():
获取authorization code
auth_token = gdata.gauth.OAuth2Token(
client_id = CLIENT_ID,
client_secret = CLIENT_SECRET,
scope = SCOPE,
user_agent=,
)
redirect_uri = REDIRECT_URI
auth_url = auth_token.generate_authorize_url(redirect_uri=redirect_uri)
#在浏览器打开url 完成登录 授权步调 获取authorization code
webbrowser.open(auth_url)
def get_access_token(auth_token, auth_code):
用获得的 authorization code 获取access token 然后保存
redirect_url = %s?code=%s % (REDIRECT_URI, auth_code)
url = atom.http_core.ParseUri(redirect_url)
token = auth_token.get_access_token(url.query)
token = gdata.gauth.token_to_blob(auth_token)
return auth_token
#登录 进口
def singin():
#获取已保存token 弱没有token=None
try:
with open(token, r) as to:
token = to.read()
try:
token = gdata.gauth.token__blob(token)
except gdata.gauth.UnsupportedTokenType, e:
raise e
except:
token = None
#起首断定是否有已保存的token
#若是有直接应用 没有从头获取
if token:
auth_token = token
else:
auth_token = get_auth_code()
auth_code = enter_auth_code()
auth_token = get_access_token(auth_token, auth_code)
return auth_token
#将 authorization code 复制到dialog, 传回wxpyton
def enter_auth_code():
dialog = wx.TextEntryDialog(None,
enter authorization code!, enter authorization code,
, style=wx.OK|wx.CANCEL)
if dialog.ShowModal() == wx.ID_OK:
#返回 authorization code
return dialog.GetValue()
dialog.Destroy()
if __name__ == __main__:
singin()
如今就可以用auth_token来接见API了
#!/usr/bin/python
# -- coding: utf-8 --
File: contacts_operate.py
Author: goodspeed
Date: 2013-05-07 20:13:14 CST
Description: contacts data operate
__future__ import unicode_literals
import gdata.contacts.client as gd
login_contact import APP_NAME
def query_contacts(auth_token):
gd_client = gd.ContactsClient(source=APP_NAME)
gd_client = auth_token.authorize(gd_client)
query = gd.ContactsQuery(max_results=200)
feed = gd_client.GetContacts(q = query)
for i, entry in enumerate(feed.entry):
if entry.name:
print i, entry.name.full_name.text
就是这些。。如今正在进修若是有不合错误的处所请提示一下。感谢
所有随风而逝的都属于昨天的,所有历经风雨留下来的才是面向未来的。—— 玛格丽特·米切尔 《飘》
