Google play apis - purchases.products.get for purchase validation gives 401 OAuth2 error
I aim to fetch purchases from googleapis by using a service account on server-side.
Method: purchases.products.get api requires an oauth2 authentication.
Therefore I create an oauth2 token -from the client-secret.json I am provided from consolce.cloud.google- inside of my server-side backend java spring application.
GoogleCredentials googleCredentials = GoogleCredentials.fromStream(new FileInputStream("src/main/resources/client_secret.json")).createScoped("https://www.googleapis.com/auth/androidpublisher");
googleCredentials.refresh();
AccessToken accessToken = googleCredentials.getAccessToken();
The token I generate is like 'ya29.c.b0AXczHcuLszNI................' It ends with multiple dots I don't know why.
After I get the token I do the GET request to this URL. I gets the following error:
"message": "Request is missing required authentication credential. Expected OAuth 2 access token, login cookie or other valid authentication credential. See https://developers.google.com/identity/sign-in/web/devconsole-project.",
Why my token is not working? The way I use it, Is it wrong? And/or oauth2 token generation way is it wrong?
The access token is sent as an authorization header. The access token should be prefexed with the term bearer as it is a bearer token.
- Where to store the refresh token on the Client?
- GitHub Clone with OAuth Access Token
- How to get refresh token for "Sign In With Google"
- How can I download a single raw file from a private github repo using the command line?
- How to properly use Bearer tokens?
- Automating access token refreshing via interceptors in axios
- How to log out of Synology SSO Server (OIDC)?
- OAuth not working inside an iframe
- BFF pattern for native apps in OAuth 2.0?
- Why is PKCE `code_verifier` calculated server-side in BFF pattern?
- Python Script Token Refresh Mechanism Problem for Spotify API
- Laravel Passport Password Grant - Client authentication failed
- Github, restricting third-party access to organizations
- UiPath CLI - github deployment to uipath cloud
- Why Does OAuth v2 Have Both Access and Refresh Tokens?
- Facebook login message: "URL Blocked: This redirect failed because the redirect URI is not whitelisted in the app’s Client OAuth Settings."
- Is is safe to store access token in session storage of client browser?
- Why Google native oauth2 flow require client secret?
- How to use the Requests OAuthlib with grant-type 'Client Credentials'?
- How to get a Google OAuth 2 token for API testing
- Data intent is null in Android using universal links/applinks using react-native-app-auth
- Cognito: User Pool Client OAuth Scope Limitation
- Yahoo! Fantasy API Maximum Count?
- GitLab OAuth access token validity
- Twitter request token invalid on iOS
- Implementing OAuth 1.0 in an iOS
- How to create oAuth in Instagram?
- Swift (Xcode) REST API Connection using OAuth 1
- MapMyFitness API OAuth questions
- “That Microsoft account doesn’t exist” for Microsoft logins on Auth0