google calendar api token expires in 7 days
I used this guide to create a Google calendar OAuth2 client id and client secret. I then used this gcalcli command to create an API access token:
gcalcli --noauth_local_webserver --client-id=$clientid --client-secret=$clientsecret --config-folder $path/auth agenda
This worked fine, and the command showed me a list of google calendar events.
It also created this token $path/auth/oauth which allows me to run the command again without having to authenticate every time, since the saved token does that for me.
My problem is that for some reason the oauth token expires every 7 days, and then I have to go through the same process again, to create a new token.
There's an entry in the oauth file showing "expires_in": 83, whereas other times I went through the same process the entry was "expires_in": 3599,. I'm assuming this entry defines the longevity of the token but I'm not 100% sure.
So my question is, why this token expires in a week, and what can I do to extend it for a longer period of time?
Additional information: This is basically a bash script running on Debian 11. It runs gcalcli, gets a list of google calendar events and sends reminders via sms.
I realise theres a way to use the refresh token to renew the access token, but it's not something I got around doing yet.
To be clear Access tokens expire within an hour, Refresh tokens are used to request a new access token when the refresh token has expired.
If you are seeing your app stopping working after seven days its due to the following. You are probably getting an invalid token error.
If you check the documentation for expiration it states
A Google Cloud Platform project with an OAuth consent screen configured for an external user type and a publishing status of "Testing" is issued a refresh token expiring in 7 days.
The solution is to set your app to production
I realize there's a way to use the refresh token to renew the access token, but it's not something I got around doing yet.
If you are seeing your code stop working after seven days something in your code is using the refresh token already. I did a bit of digging in gcalcli internally it uses the Google api python client library. This is what is refreshing your access token. #L132
- Limiting the scopes of an OAuth 2.0 flow
- Why do i need to specify redirect_uri if i am authenticating from server side?
- Error 400: invalid_scope with Postman and Google OAuth2
- Issues Adding SMTP.Send Permission to Azure Application for Office 365 SMTP
- PHP - How to get OAuth 2.0 Token
- UPS Outh Rating API return Invalid Authentication Information
- How to store sensitive data in React Native or expo code ? ( with Keychain and Keystore )
- How to get Optum sandbox to authenticate with OAuth 2.0 using Java and okhttp
- Spring Boot redirection back to login page
- New Google place api using google OAuth, ask failed to refresh token
- Authentication Problems using Google's ARCore API
- Getting OAuth code challenge on loopback server
- How do I solve audience (aud) invalid claim error for downstream api service?
- oauth 2 parameters can only have a single value: scope
- #oauth2 security expressions on method level
- Calling spring authorization server OAuth2 REST endpoints
- Google AdWords API authorization raising AdsCommon::Errors::AuthError
- Google OAuth 2 Error 400: redirect_uri_mismatch but redirect uri is compliant and already registered in Google Cloud Console
- Passport - Node.js not returning Refresh Token
- AWS Cognito: Missing Scopes in Access Token with Custom UI and Device Remember Functionality for MFA
- Cross-client Google OAuth: Get auth code on iOS and access token on server
- How to generate GOOGLE_CLIENT_ID and GOOGLE_CLIENT_SECRET without a domain?
- Spring Gateway and OAuth
- OAuth Client Credential Flow - Refresh Tokens
- Django OAuth2 Authentication Failing in Unit Tests - 401 'invalid_client' Error
- Add OAuth authentication for HTTP request triggers
- OAuth2 implementation and user management Django
- How to enable a submit button if form fields are auto-filled by the browser using saved credentials on page load?
- AADSTS70000 Error When Requesting for Access Token
- Is storing an OAuth token in cookies bad practice?