General - Access Token Response Received from Google OpenID Connect

Access Token Response Received from Google OpenID Connect

Q

How to process the access token response received from Google OpenID Connect service?

✍: FYIcenter.com

A

After Google OpenID Connect service receives an access token request from your Web server script, it will process the request and returns the access token response directly.

In order for your Web server script to process the access token response, you need to have a good understanding of the access token response.

Here is an example of Google OpenID Connect access token response,

{
  "access_token": "ya29.GlycBnoWhm7WAwcWy...",
  "expires_in": 3559,
  "scope": 
"https://www.googleapis.com/auth/plus.me https://www.googleapis.com/auth/userinfo.email",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6I..."
}

The "id_token" value is actually the "id_token" defined in RFC 7519 - JWT (JSON Web Token).

If there is any issue with the access token request, you will receive an error response like this:

{
  "error": "invalid_grant",
  "error_description": "Bad Request"
}

If an error response is received, your server side script should display an error Web page to the end user, so he/she can try to sign on again.

⇒ Google OpenID Connect Access Token Request Test Page

⇐ Process Google OpenID Connect Access Token Request

⇑ Google OpenID Connect Integration

⇑⇑ OpenID Tutorials

2019-02-05, 567👍, 0💬

Process Google OpenID Connect Access Token Request
How to the Google OpenID Connect access token Request is process by Google OpenID Connect service? When Google OpenID Connect service receives an access token Request from a Web server, it will: Verify if the "client_id" value in the request is valid. If not, display an error message page to the end... 2019-02-05, 542👍, 0💬

Azure AD Integration v2.0
Where to find tutorials on Azure AD Integration v2.0? Here is a list of tutorials to answer many frequently asked questions compiled by FYIcenter.com team on Azure AD Integration v2.0. Authentication Flows with Azure AD v2 Azure AD v2 OpenID Metadata Document Azure AD v2 Sign-On Authentication Reque... 2021-01-09, 531👍, 0💬

Initiate Google OpenID Connect Access Token Request
How to initiate Google OpenID Connect Access Token Request? The Google OpenID Connect Access Token Request should be initiated from your application Web server. This is why the authentication code flow is more secure than the implicit flow, because the "id_token" value will be received by Web server... 2019-02-05, 494👍, 0💬

Azure AD Integration Versions 1 and 2
What are differences of v1.0 and v2.0 of Azure AD Integration? The main difference between v1.0 and v2.0 of Azure AD Integration is who can sign in to your application: Azure AD v1.0 allows only work and school accounts to sign in to your application. Azure AD v2.0 allows work and school accounts fr... 2021-01-09, 460👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.