google-app-enginegoogle-oauth
GAE: Is there a way to authorize version endpoints with GCP OAuth redirect URLs?
I thought I was smart by using a custom version tag for my applications so I could predetermine the fully qualified version-URL. And my integration tests work wonders when I do this, however, I can't figure out a way around my OAuth rules.
Currently, wildcard Authorized redirect URIs aren't allowed:
What I want to achieve is basically a fully functional app (consist of three services) that has yet to be promoted. That way our testers can greenlight to deployment before the deployment.
Anyone got any idea is such a thing is possible?
Solution
So thanks to @sllopis's comment I ended up creating a login service that took care of the redirecting to multiple versions of the same service.
It isn't the perfect solution, but it is one we can use. OAuth to our unpublished apps.
//@ts-check
const fastify = require("fastify")({ logger: true });
const {
google: {
auth: { OAuth2 }
}
} = require("googleapis");
const { googleLoginCallback, googleClientId, googleClientSecret } = process.env;
const defaultScope = [
"https://www.googleapis.com/auth/plus.me",
"https://www.googleapis.com/auth/userinfo.email"
];
const getGoogleRedirecturl = () =>
new OAuth2(
googleClientId,
googleClientSecret,
googleLoginCallback
).generateAuthUrl({
access_type: "offline",
prompt: "consent",
scope: defaultScope
});
fastify.get("/login", (req, reply) => {
const { versionEndpoint } = req.query;
const encodedEndpoint = encodeURIComponent(versionEndpoint);
const query = `&state=${encodedEndpoint}`;
reply.redirect(getGoogleRedirecturl() + query);
});
fastify.get("/login/callback", (req, reply) => {
const { code, state } = req.query;
const endpoint = decodeURIComponent(state);
reply.redirect(endpoint + "?code=" + code);
});
fastify
.listen(3000)
.then(str => {
fastify.log.info(`server listening on ${fastify.server.address()}`, str);
})
.catch(err => {
fastify.log.error(err);
process.exit(1);
});
- Viewing deployed files app engine standard?
- Failing to generate all the header and implementation classed for iOS
- Enable Memcached on App Engine runtime PHP 7.2
- Deploying an Angular app on Google Cloud with minimal costs
- Permissions error fetching application - Gcloud app deploy
- How to Mock a Google API Library with Python 3.7 for Unit Testing
- GAE List tasks that start with a name?
- How to install Google Cloud SDK app-engine-python on Debian 12?
- Google App Engine showing only index.php file
- GAE on java 21 throws NullPointerException at CookieCache.parseCookies()
- FTP to Google Storage
- Google Cloud logging, Python3.8 standard environment, group request related logs by trace id
- Mac terminal ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/tmp/mysql.sock' (2)
- Access google cloud storage bucket from other project using python
- How to include third party Python libraries in Google App Engine?
- Scraping Python advice needed
- How to perform web scraping to find specific linked pages in Java on Google App Engine?
- Connecting to Endpoint API on Android Client
- Deploying to GCP App Engine from terminal produces contradictory error messages
- Issue when trying to deploy dotnet 8 web app to gcloud app engine flex
- The resource 'projects/<my project>' was not found" error when trying to get list of running instances
- Angular 17 web app deploy to Google App Engine not working
- App Engine says "Your runtime version for ruby33 is past End of Support", but it isn't
- Error during `gcloud app deploy` for GAE app: "Failed to create cloud build: invalid bucket"
- Python admin only decorators
- Google App Engine deployment fails because of failing readiness check
- What is the difference between Google App Engine and Google Compute Engine?
- gcloud app deploy eror The "vpcaccess.connectors.use" permission is required
- Can't connect to localhost from Chrome extension
- Where is nginx.conf kept on Google App Engine flexible environment?