Access Token Response Received from Google OpenID Connect

Q

How to process the access token response received from Google OpenID Connect service?

✍: FYIcenter.com

A

After Google OpenID Connect service receives an access token request from your Web server script, it will process the request and returns the access token response directly.

In order for your Web server script to process the access token response, you need to have a good understanding of the access token response.

Here is an example of Google OpenID Connect access token response,

{
  "access_token": "ya29.GlycBnoWhm7WAwcWy...",
  "expires_in": 3559,
  "scope": 
"https://www.googleapis.com/auth/plus.me https://www.googleapis.com/auth/userinfo.email",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6I..."
}

The "id_token" value is actually the "id_token" defined in RFC 7519 - JWT (JSON Web Token).

If there is any issue with the access token request, you will receive an error response like this:

{
  "error": "invalid_grant",
  "error_description": "Bad Request"
}

If an error response is received, your server side script should display an error Web page to the end user, so he/she can try to sign on again.

Â

â‡’ Google OpenID Connect Access Token Request Test Page

â‡ Process Google OpenID Connect Access Token Request

â‡‘ Google OpenID Connect Integration

â‡‘â‡‘ OpenID Tutorials

2019-02-05, 941👍, 0💬

Google OpenID Connect Access Token Request
What is the Google OpenID Connect Access Token Request? If you want to implement the authentication code flow, also called server flow, to integrate your application with Google OpenID Connect, you need to have a good understanding of the Google OpenID Connect access token request, which is the seco... 2019-02-05, 963👍, 0💬

Access Token Response Received from Google OpenID Connect
How to process the access token response received from Google OpenID Connect service? After Google OpenID Connect service receives an access token request from your Web server script, it will process the request and returns the access token response directly. In order for your Web server script to p... 2019-02-05, 942👍, 0💬

Validate Google OpenID Connect id_token Signature
How to validate the id_token signature received from Google OpenID Connect authentication response? You can try to validate the "id_token" signature with your own code logic in these steps: 1. Take out the "kid" value from "Header" component of the "id_token". This will be used to identify the publi... 2019-02-05, 939👍, 0💬

Process Google OpenID Connect Access Token Request
How to the Google OpenID Connect access token Request is process by Google OpenID Connect service? When Google OpenID Connect service receives an access token Request from a Web server, it will: Verify if the "client_id" value in the request is valid. If not, display an error message page to the end... 2019-02-05, 923👍, 0💬

Initiate Google OpenID Connect Access Token Request
How to initiate Google OpenID Connect Access Token Request? The Google OpenID Connect Access Token Request should be initiated from your application Web server. This is why the authentication code flow is more secure than the implicit flow, because the "id_token" value will be received by Web server... 2019-02-05, 903👍, 0💬

Google OpenID Connect Access Token Request Test Page
How to build an Google OpenID Connect Access Token Request Test page? The Access Token Request is the second call to the Google OpenID Connect service in the authentication code flow to retrieve the id_token with the authentication code received from the first call. You can build a simple Web form p... 2022-02-04, 856👍, 0💬

Validate Google OpenID Connect id_token
How to validate the id_token value received from Google OpenID Connect authentication response? As you can see from the previous tutorials, you can easily decode the "id_token" value received from Google OpenID Connect authentication response using a simple PHP script. After decoding, you can get al... 2022-02-04, 822👍, 0💬

Build Authorization Code Flow with Google OpenID Connect
How to implement the OpenID Authorization Code Flow with Google OpenID Connect service? If you want to implement the OpenID Authorization Code Flow (also called the Server Flow) in your Web application to use Google OpenID Connect service, you should follow these steps: 1. Building the Google OpenID... 2022-02-04, 811👍, 0💬

Add App Secret Keys on Azure AD
How to add a secret key in an app registration on Azure AD? Secret keys in an app registration on Azure AD are used to authenticate the access token request in the authentication code flow. You can add a new secret key in your app registration on Azure AD by following these steps: 1. Sign in to the ... 2022-03-29, 784👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.