草庐IT

javascript - 谷歌 OAuth gapi.auth.authorize X-Frame-Options : SAMEORIGIN

coder 2024-07-25 原文

大约 2 周前开始,一些客户开始遇到阻止他们使用 Google 服务进行身份验证的问题。到目前为止,我遇到的所有实例似乎都在非 Gmail 域中。问题似乎是(参见下面的差异部分)https://accounts.google.com/o/oauth2/auth来自 gapi.auth.authorize 的请求正在为这些特定客户端返回带有“X-Frame-Options: SAMEORIGIN” header 的响应。我无法在本地重现此问题,但收到了失败请求的 HAR。

同样的身份验证方法适用于各种其他客户端,包括其他托管域(非@gmail 帐户)。

关于什么可能导致此请求失败的任何想法?要调查的其他事项或其他信息?

在开发者控制台中 https://www.moo.do是一个有效的 Javascript 来源。

最终错误显示在用户的控制台: X-Frame-Options 拒绝加载:https://accounts.google.com/o/oauth2/auth ?不允许跨源框架。

相似点

  • 这两个请求在授权时都使用 immediate=true。当使用 immediate=false(导致请求通过帐户选择器弹出窗口)时,失败帐户成功地为请求提供服务。

差异

  • 在对失败帐户的响应中有一个 X-Frame-Options header 。
  • 在对失败帐户的响应中,response.content.size 字段为 0。此外,response._transferSize 为 0,并且存在一个 response._error 字段(为空)。
  • 在失败帐户的响应中,scopes 参数被编码为“[scope]+[scope]+[scope]”,该编码已被弃用。 [编辑:收到另一个 HAR,它使用正确的非弃用空格分隔范围,但仍然失败]

下面是成功和失败的请求。我不知道为什么失败的请求会返回额外的 header 。一些信息已被删除 ([REMOVED]) 或编辑 (XXXX/YYYY)。

请求成功

{
  "startedDateTime": "2016-03-03T15:52:27.625Z",
  "time": 84.7660000436008,
  "request": {
    "method": "GET",
    "url": "https://accounts.google.com/o/oauth2/auth?client_id=597847337936.apps.googleusercontent.com&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.install%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.appdata%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcontacts.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fgmail.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.metadata.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive&immediate=true&login_hint=YYYYY%40YYYY.com&authuser=-1&include_granted_scopes=true&proxy=oauth2relay593501023&redirect_uri=postmessage&origin=https%3A%2F%2Fwww.moo.do&response_type=token&state=867674703%7C0.1520984533&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en.d1w1l2mcNcs.O%2Fm%3D__features__%2Fam%3DAQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCMuer-UxvQzEv7JYzkFSQh2Kou7xA",
    "httpVersion": "unknown",
    "headers": [
      {
        "name": "pragma",
        "value": "no-cache"
      },
      {
        "name": "accept-encoding",
        "value": "gzip, deflate, sdch"
      },
      {
        "name": "accept-language",
        "value": "en-US,en;q=0.8"
      },
      {
        "name": "upgrade-insecure-requests",
        "value": "1"
      },
      {
        "name": "user-agent",
        "value": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.97 Safari/537.36"
      },
      {
        "name": "accept",
        "value": "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8"
      },
      {
        "name": "cache-control",
        "value": "no-cache"
      },
      {
        "name": ":authority",
        "value": "accounts.google.com"
      },
      {
        "name": "cookie",
        "value": [REMOVED]
      },
      {
        "name": ":scheme",
        "value": "https"
      },
      {
        "name": "x-chrome-connected",
        "value": "id=108229145437218213687,mode=0,enable_account_consistency=false"
      },
      {
        "name": "referer",
        "value": "https://www.moo.do/app/"
      },
      {
        "name": "x-client-data",
        "value": "CKO2yQEIwbbJAQj9lcoB"
      },
      {
        "name": ":method",
        "value": "GET"
      }
    ],
    "queryString": [
      {
        "name": "client_id",
        "value": "597847337936.apps.googleusercontent.com"
      },
      {
        "name": "scope",
        "value": "https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.install%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.appdata%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcontacts.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fgmail.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.metadata.readonly%20https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive"
      },
      {
        "name": "immediate",
        "value": "true"
      },
      {
        "name": "login_hint",
        "value": "YYYYY%40YYYY.com"
      },
      {
        "name": "authuser",
        "value": "-1"
      },
      {
        "name": "include_granted_scopes",
        "value": "true"
      },
      {
        "name": "proxy",
        "value": "oauth2relay593501023"
      },
      {
        "name": "redirect_uri",
        "value": "postmessage"
      },
      {
        "name": "origin",
        "value": "https%3A%2F%2Fwww.moo.do"
      },
      {
        "name": "response_type",
        "value": "token"
      },
      {
        "name": "state",
        "value": "867674703%7C0.1520984533"
      },
      {
        "name": "jsh",
        "value": "m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en.d1w1l2mcMcs.O%2Fm%3D__features__%2Fam%3DAQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCMuer-UxvQzEv7JYzkFSQh2Kou7xA"
      }
    ],
    "cookies": [
      {
        "name": "LSOLH",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "SMSV",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "RMME",
        "value": "false",
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "ACCOUNT_CHOOSER",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "GALX",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "GoogleAccountsLocale_session",
        "value": "en",
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "expor",
        "value": "3100077",
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "GMAIL_RTT",
        "value": "151",
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "S",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "SID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "LSID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "HSID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "SSID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "APISID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "SAPISID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "GAPS",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "LSOLH",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "OGPC",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      },
      {
        "name": "NID",
        "value": [REMOVED],
        "expires": null,
        "httpOnly": false,
        "secure": false
      }
    ],
    "headersSize": -1,
    "bodySize": 0
  },
  "response": {
    "status": 200,
    "statusText": "OK",
    "httpVersion": "unknown",
    "headers": [
      {
        "name": "pragma",
        "value": "no-cache"
      },
      {
        "name": "date",
        "value": "Thu, 03 Mar 2016 15:52:27 GMT"
      },
      {
        "name": "content-encoding",
        "value": "gzip"
      },
      {
        "name": "x-content-type-options",
        "value": "nosniff"
      },
      {
        "name": "server",
        "value": "GSE"
      },
      {
        "name": "content-language",
        "value": "en"
      },
      {
        "name": "status",
        "value": "200"
      },
      {
        "name": "cache-control",
        "value": "no-cache, no-store, max-age=0, must-revalidate"
      },
      {
        "name": "content-type",
        "value": "text/html; charset=UTF-8"
      },
      {
        "name": "alt-svc",
        "value": "quic=\":443\"; ma=2592000; v=\"30,29,28,27,26,25\""
      },
      {
        "name": "alternate-protocol",
        "value": "443:quic,p=1"
      },
      {
        "name": "x-xss-protection",
        "value": "1; mode=block"
      },
      {
        "name": "expires",
        "value": "Fri, 01 Jan 1990 00:00:00 GMT"
      }
    ],
    "cookies": [],
    "content": {
      "size": 2096,
      "mimeType": "text/html"
    },
    "redirectURL": "",
    "headersSize": -1,
    "bodySize": -1,
    "_transferSize": 1051
  },
  "cache": {},
  "timings": {
    "blocked": 1.07300002127886,
    "dns": -1,
    "connect": -1,
    "send": 0.39199995808303,
    "wait": 81.3200001139194,
    "receive": 1.9809999503195002,
    "ssl": -1
  },
  "connection": "2025013",
  "pageref": "page_1"
}

请求失败

{
  "startedDateTime": "2016-03-03T10:12:35.752Z",
  "time": 442.6579999853857,
  "request": {
    "method": "GET",
    "url": "https://accounts.google.com/o/oauth2/auth?client_id=597847337936.apps.googleusercontent.com&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.install+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.appdata+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcontacts.readonly+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.metadata.readonly+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar.readonly+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fgmail.readonly&immediate=true&login_hint=XXXXX%40XXXX.com&authuser=-1&include_granted_scopes=true&proxy=oauth2relay235542267&redirect_uri=postmessage&origin=https%3A%2F%2Fwww.moo.do&response_type=token&state=638324187%7C0.1211244794&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.de.7pJmZpTVQp8.O%2Fm%3D__features__%2Fam%3DAQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCOmU_zLoubGrUI-_ZI9ZhB7rGP1Sw",
    "httpVersion": "unknown",
    "headers": [
      {
        "name": "Accept",
        "value": "text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8"
      },
      { 
        "name": "Referer",
        "value": "https://www.moo.do/app/"
      },
      {
        "name": "Upgrade-Insecure-Requests",
        "value": "1"
      },
      {
        "name": "User-Agent",
        "value": "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36"
      }
    ],
    "queryString": [
      {
        "name": "client_id",
        "value": "597847337936.apps.googleusercontent.com"
      },
      {
        "name": "scope",
        "value": "https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.install+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.appdata+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcontacts.readonly+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive.metadata.readonly+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fdrive+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar.readonly+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fcalendar+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fgmail.readonly"
      },
      {
        "name": "immediate",
        "value": "true"
      },
      {
        "name": "login_hint",
        "value": "XXXXX%40XXXX.com"
      },
      {
        "name": "authuser",
        "value": "-1"
      },
      {
        "name": "include_granted_scopes",
        "value": "true"
      },
      {
        "name": "proxy",
        "value": "oauth2relay235542267"
      },
      {
        "name": "redirect_uri",
        "value": "postmessage"
      },
      {
        "name": "origin",
        "value": "https%3A%2F%2Fwww.moo.do"
      },
      {
        "name": "response_type",
        "value": "token"
      },
      {
        "name": "state",
        "value": "638324187%7C0.1211244794"
      },
      {
        "name": "jsh",
        "value": "m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.de.7pJmZpTVQp8.O%2Fm%3D__features__%2Fam%3DAQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCOmU_zLoubGrUI-_ZI9ZhB7rGP1Sw"
      }
    ],
    "cookies": [],
    "headersSize": -1,
    "bodySize": 0
  },
  "response": {
    "status": 200,
    "statusText": "OK",
    "httpVersion": "unknown",
    "headers": [
      {
        "name": "pragma",
        "value": "no-cache"
      },
      {
        "name": "date",
        "value": "Thu, 03 Mar 2016 10:12:35 GMT"
      },
      {
        "name": "content-encoding",
        "value": "gzip"
      },
      {
        "name": "x-content-type-options",
        "value": "nosniff"
      },
      {
        "name": "server",
        "value": "GSE"
      },
      {
        "name": "x-frame-options",
        "value": "SAMEORIGIN"
      },
      {
        "name": "content-language",
        "value": "de"
      },
      {
        "name": "status",
        "value": "200"
      },
      {
        "name": "cache-control",
        "value": "no-cache, no-store, max-age=0, must-revalidate"
      },
      {
        "name": "content-type",
        "value": "text/html; charset=UTF-8"
      },
      {
        "name": "alt-svc",
        "value": "quic=\":443\"; ma=2592000; v=\"30,29,28,27,26,25\""
      },
      {
        "name": "alternate-protocol",
        "value": "443:quic,p=1"
      },
      {
        "name": "x-xss-protection",
        "value": "1; mode=block"
      },
      {
        "name": "expires",
        "value": "Fri, 01 Jan 1990 00:00:00 GMT"
      }
    ],
    "cookies": [],
    "content": {
      "size": 0,
      "mimeType": "text/html"
    },
    "redirectURL": "",
    "headersSize": -1,
    "bodySize": -1,
    "_transferSize": 0,
    "_error": ""
  },
  "cache": {},
  "timings": {
    "blocked": 0.944999977946281,
    "dns": -1,
    "connect": -1,
    "send": 0.3190000134054589,
    "wait": 151.53400000417625,
    "receive": 289.85999998985767,
    "ssl": -1
  },
  "pageref": "page_1"
}

最佳答案

很好。

问题/原因

如果应用请求超过 7 个 OAuth 范围,Google 授权服务器会将“X-Frame-Options: SAMEORIGIN” header 附加到托管域帐户 (Google Apps)。小于 7(范围是什么无关紧要)并且同一帐户上的同一请求没有在返回调用中指定的 X-Frame-Options header 。

要使此重现发生(必须从 GAPI JS 客户端提供 jsh 参数)和返回 X-Frame-Options header 的其他场景,还需要其他事件部分。然而,此时重现文件显示 Google 授权服务器似乎存在问题。

提示:)

由于 X-Frame-Options header 的性质,客户端错误检测将不知道请求已被阻止,这使得此特定错误成为一个更大的问题。此外,授权回调将永远不会收到任何类型的失败通知,使请求应用程序处于等待任何类型通知的不确定状态。

问题演示

Demos

包含两个重现文件:

auth_repro.html - 这完全回避了 GAPI JS 客户端并演示了该问题。它确实使用客户端附加到授权请求的特定参数 (jsh) 来解决问题。

auth_repro_gapi.html - 这使用 GAPI JS 客户端重现问题。

解决方案

不要懒惰地 trim/管理您请求的范围,否则您的授权请求将开始悄无声息地失败。

如果没有这种行为,那就太好了。最好的猜测是这是一项安全措施出了问题?

关于javascript - 谷歌 OAuth gapi.auth.authorize X-Frame-Options : SAMEORIGIN,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/35779351/

X-Frame-Optionsjavascript34valuenamegoogle-drive-apigoogle-oauthgoogle-drive-realtime-apigoogle-api-js-client

有关javascript - 谷歌 OAuth gapi.auth.authorize X-Frame-Options : SAMEORIGIN的更多相关文章

  1. ruby - Capistrano 3 在任务中更改 ssh_options - 2

    我尝试使用不同的ssh_options在同一阶段运行capistranov.3任务。我的production.rb说:set:stage,:productionset:user,'deploy'set:ssh_options,{user:'deploy'}通过此配置,capistrano与用户deploy连接,这对于其余的任务是正确的。但是我需要将它连接到服务器中配置良好的an_other_user以完成一项特定任务。然后我的食谱说:...taskswithoriginaluser...task:my_task_with_an_other_userdoset:user,'an_othe

  2. ruby-on-rails - rspec should have_select ('cars' , :options => ['volvo' , 'saab' ] 不工作 - 2

    关闭。这个问题需要detailsorclarity.它目前不接受答案。想改进这个问题吗?通过editingthispost添加细节并澄清问题.关闭8年前。Improvethisquestion在首页我有:汽车:VolvoSaabMercedesAudistatic_pages_spec.rb中的测试代码:it"shouldhavetherightselect"dovisithome_pathit{shouldhave_select('cars',:options=>['volvo','saab','mercedes','audi'])}end响应是rspec./spec/request

  3. ruby-on-rails - 使用 javascript 更改数据方法不会更改 ajax 调用用户的什么方法? - 2

    我遇到了一个非常奇怪的问题,我很难解决。在我看来,我有一个与data-remote="true"和data-method="delete"的链接。当我单击该链接时,我可以看到对我的Rails服务器的DELETE请求。返回的JS代码会更改此链接的属性,其中包括href和data-method。再次单击此链接后,我的服务器收到了对新href的请求,但使用的是旧的data-method,即使我已将其从DELETE到POST(它仍然发送一个DELETE请求)。但是,如果我刷新页面,HTML与"new"HTML相同(随返回的JS发生变化),但它实际上发送了正确的请求类型。这就是这个问题令我困惑的

  4. ruby-on-rails - 使用 gmaps4rails 动态加载谷歌地图标记 - 2

    如何只加载map边界内的标记gmaps4rails?当然,在平移和/或缩放后加载新的。与此直接相关的是,如何获取map的当前边界和缩放级别? 最佳答案 我是这样做的,我只在用户完成平移或缩放后替换标记,如果您需要不同的行为,请使用不同的事件监听器:在你看来(index.html.erb):{"zoom"=>15,"auto_adjust"=>false,"detect_location"=>true,"center_on_user"=>true}},false,true)%>在View的底部添加:functiongmaps4rail

  5. ruby - 在 Mechanize 中使用 JavaScript 单击链接 - 2

    我有这个:AccountSummary我想单击该链接,但在使用link_to时出现错误。我试过:bot.click(page.link_with(:href=>/menu_home/))bot.click(page.link_with(:class=>'top_level_active'))bot.click(page.link_with(:href=>/AccountSummary/))我得到的错误是:NoMethodError:nil:NilClass的未定义方法“[]” 最佳答案 那是一个javascript链接。Mechan

  6. ruby-on-rails - 获取 ActionController::RoutingError(当尝试使用 AngularJS 将数据发布到 Rails 服务器时,没有路由匹配 [OPTIONS] "/users" - 2

    尝试从我的AngularJS端将数据发布到Rails服务器时出现问题。服务器错误:ActionController::RoutingError(Noroutematches[OPTIONS]"/users"):actionpack(4.1.9)lib/action_dispatch/middleware/debug_exceptions.rb:21:in`call'actionpack(4.1.9)lib/action_dispatch/middleware/show_exceptions.rb:30:in`call'railties(4.1.9)lib/rails/rack/logg

  7. javascript - jQuery 的 jquery-1.10.2.min.map 正在触发 404(未找到) - 2

    我看到有关未找到文件min.map的错误消息:GETjQuery'sjquery-1.10.2.min.mapistriggeringa404(NotFound)截图这是从哪里来的? 最佳答案 如果ChromeDevTools报告.map文件的404(可能是jquery-1.10.2.min.map、jquery.min.map或jquery-2.0.3.min.map,但任何事情都可能发生)首先要知道的是,这仅在使用DevTools时才会请求。您的用户不会遇到此404。现在您可以修复此问题或禁用sourcemap功能。修复:获取文

  8. ruby-on-rails - 我将 Rails3 与 tinymce 一起使用。如何呈现用户关闭浏览器javascript然后输入xss? - 2

    我有一个用Rails3编写的站点。我的帖子模型有一个名为“内容”的文本列。在帖子面板中,html表单使用tinymce将“content”列设置为textarea字段。在首页,因为使用了tinymce,post.html.erb的代码需要用这样的原始方法来实现。.好的,现在如果我关闭浏览器javascript,这个文本区域可以在没有tinymce的情况下输入,也许用户会输入任何xss,比如alert('xss');.我的前台会显示那个警告框。我尝试sanitize(@post.content)在posts_controller中,但sanitize方法将相互过滤tinymce样式。例如

  9. ruby - 使用 Selenium WebDriver 启用/禁用 javascript - 2

    出于某种原因,我必须为Firefox禁用javascript(手动,我们按照提到的步骤执行http://support.mozilla.org/en-US/kb/javascript-settings-for-interactive-web-pages#w_enabling-and-disabling-javascript)。使用Ruby的SeleniumWebDriver如何实现这一点? 最佳答案 是的,这是可能的。而是另一种方式。您首先需要查看链接Selenium::WebDriver::Firefox::Profile#[]=

  10. ruby - 从谷歌开发者网站下载后,client_secret.json 为空 - 2

    我正在尝试从googleAPI下载client_secret.json。我正在执行https://developers.google.com/gmail/api/quickstart/ruby中列出的步骤.使用此向导在GoogleDevelopersConsole中创建或选择项目并自动启用API。在左侧边栏中,选择同意屏幕。选择电子邮件地址并输入产品名称(如果尚未设置),然后单击“保存”按钮。在左侧边栏中,选择凭据并点击创建新客户端ID。选择应用程序类型已安装应用程序,已安装应用程序类型为其他,然后单击“创建客户端ID”按钮。点击新客户端ID下的下载JSON按钮。将此文件移动到您的工作

随机推荐