Access Token Response Received from Google OpenID Connect

Q

How to process the access token response received from Google OpenID Connect service?

✍: FYIcenter.com

A

After Google OpenID Connect service receives an access token request from your Web server script, it will process the request and returns the access token response directly.

In order for your Web server script to process the access token response, you need to have a good understanding of the access token response.

Here is an example of Google OpenID Connect access token response,

{
  "access_token": "ya29.GlycBnoWhm7WAwcWy...",
  "expires_in": 3559,
  "scope": 
"https://www.googleapis.com/auth/plus.me https://www.googleapis.com/auth/userinfo.email",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6I..."
}

The "id_token" value is actually the "id_token" defined in RFC 7519 - JWT (JSON Web Token).

If there is any issue with the access token request, you will receive an error response like this:

{
  "error": "invalid_grant",
  "error_description": "Bad Request"
}

If an error response is received, your server side script should display an error Web page to the end user, so he/she can try to sign on again.

⇒ Google OpenID Connect Access Token Request Test Page

⇐ Process Google OpenID Connect Access Token Request

⇑ Google OpenID Connect Integration

⇑⇑ OpenID Tutorials

2019-02-05, 613👍, 0💬

Google OpenID Connect Access Token Request
What is the Google OpenID Connect Access Token Request? If you want to implement the authentication code flow, also called server flow, to integrate your application with Google OpenID Connect, you need to have a good understanding of the Google OpenID Connect access token request, which is the seco... 2019-02-05, 610👍, 0💬

Process Google OpenID Connect Access Token Request
How to the Google OpenID Connect access token Request is process by Google OpenID Connect service? When Google OpenID Connect service receives an access token Request from a Web server, it will: Verify if the "client_id" value in the request is valid. If not, display an error message page to the end... 2019-02-05, 589👍, 0💬

Validate Google OpenID Connect id_token Signature
How to validate the id_token signature received from Google OpenID Connect authentication response? You can try to validate the "id_token" signature with your own code logic in these steps: 1. Take out the "kid" value from "Header" component of the "id_token". This will be used to identify the publi... 2019-02-05, 588👍, 0💬

Azure AD Integration v2.0
Where to find tutorials on Azure AD Integration v2.0? Here is a list of tutorials to answer many frequently asked questions compiled by FYIcenter.com team on Azure AD Integration v2.0. Authentication Flows with Azure AD v2 Azure AD v2 OpenID Metadata Document Azure AD v2 Sign-On Authentication Reque... 2021-01-09, 584👍, 0💬

Azure AD v2 OpenID Metadata Document
What is the Azure AD v2.0 OpenID Metadata Document? Azure AD v2.0 OpenID Metadata Document is an online JSON document that contains most of the information required for an app to perform sign-in. This includes information such as the URLs to use and the location of the service's public signing keys.... 2021-01-09, 572👍, 0💬

Authentication Flows with Azure AD v2
What are Authentication Flows Supported by Azure AD v2.0 service? Azure AD v2.0 service supports 3 Authentication Flows: 1. Implicit Flow - The Implicit Flow is simple to implement. But it is less secure. Authentication is done in a single call to Azure AD service, which returns the "id_token" conta... 2021-01-09, 563👍, 0💬

Initiate Google OpenID Connect Access Token Request
How to initiate Google OpenID Connect Access Token Request? The Google OpenID Connect Access Token Request should be initiated from your application Web server. This is why the authentication code flow is more secure than the implicit flow, because the "id_token" value will be received by Web server... 2019-02-05, 542👍, 0💬

Authentication Response Received from Google OpenID Connect
How to process the authentication response received from Google OpenID Connect service after sending an authentication request? After Google OpenID Connect service receives an authentication request from the end user's Web browser, it will process the request and redirect the Web browser to the "red... 2021-03-07, 531👍, 0💬

Azure AD v2 Sign-On Authentication Request
What is the Azure AD v2.0 Sign-On Authentication Request? Before deciding which Azure AD v2.0 authentication flow you want to implement in your Web application, you need to have a good understanding of the Azure AD v2.0 Sign-on authentication request, which is the first call you have to make in any ... 2021-01-09, 523👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.