Created client id and secret id using this link https://console.cloud.google.com/
How to proceed the next step to communicate google-oauth in pyramid framework?
Related
I want to use my Laravel Passport and Breeze app to authenticate a pure standalone PHP app, a node API, and another database system using OAuth2.
Multiple users will use these apps, and I would like to create an SSO, so they don't have to connect on each or manually enter client id and secret.
I tried the PHP League OAuth Client https://oauth2-client.thephpleague.com/usage/ and the passport.js, and everything works fine with the Laravel Passport app I have to enter the client ID and the secret manually. So I want to find a connecting flow so that users don't have to do so.
Which flow would you suggest to me? Do you have any examples I could learn from?
We are currently working on an Angular node application which uses WSO2 Api Manager and Identity Server . The current mode of login is done through emails which gets saved as WSO2 Carbon users . We need to allow users to login using their google or facebook accounts using OAuth2. I have implemented the code for fetching access token,refresh token on login through google on click of a button from my app . But How can i link it to save this user as a user in our application's identity server . I found the below link which helps in the process: https://docs.wso2.com/display/IS570/Logging+in+to+an+Application+Using+Google#50629d9a6ddf4769ae2d8953c5a25645 .
Can anyone suggest me whether this one would help ?
I would like to know how the google account user details will be saved as a user in our identity manager ?
Is it possible ? If possible, what all data will i get from google ?
I assume that you have already done the configurations for the communication between your application and the WSO2 Identity Server according to the description in the question.
From the description, I'm not certain that you have done the configurations to federate the login to Google. Follow the below steps if you already haven't done so.
Generate OAuth client ID from the google developer console.
Configure a federated authenticator in WSO2 IS with google authenticator using the generated client id and secret values.
Add newly created IDP as an option to the first step of your application.
More information can be found in here. From Google, you can get email and default profile attributes of the user. Reference.
Follow the same steps for Facebook login as well. More information available here.
Now the federated login is configured. Now you need to enable JIT provisioning for the configured Identity Providers above to save the user in the Identity Server when the user is logged in with those social login options. More information available in here. You have a few modes to create the user in the Identity Server.
How do i implement unique alphanum auth in my ios mobile app using azure, i sort of did this by inserting a unique alphanum value in one of the SQLServer database user tables and when the user enters the unique code in the UI i check in the backend if the value is valid and let him in, but how can i really restrict the tables to only Authenticated users in the database? I am also not able to make my app build using username and password in Azure Auth since it only supports AD,Microsoft,FB and Twitter. Can anyone help me in this regard?
unique-code-screenshot
permissions_screenshot
Be able to make my app build using username and password in Azure Auth
By default, as you said above, it only supports AD, Microsoft, FireBase and Twitter. So we need to do this by ourselves. We need to add authentication feature via writing code in backend project. There are two type of backend we can use: .NET and Node.js, for more information about backend SDK, we can refer to:
.NET Backend SDK
Azure Mobile Apps - Node SDK
how can i really restrict the tables to only Authenticated users in the database
We need to do this at Backend: Restrict permissions to authenticated users
Lee Liu just provided some common tutorials about Azure Mobile Apps. Based on my experience, you could build your custom provider instead of the build-in identity providers to implement your requirement.
I am also not able to make my app build using username and password in Azure Auth since it only supports AD,Microsoft,FB and Twitter. Can anyone help me in this regard?
Based on your description, I assumed that you are using the Authentication and authorization in Azure App Service. If the build-in identity providers could not meet your requirement, you could also build your own custom identity provider (e.g. username/password against your database,etc) and you could also leverage the features provided by App Service Authentication /Authorization (Easy Auth).
For achieving this approach, you could follow How to: Use custom authentication for your application for .NET backend. Moreover, you could follow adrian hall's blog about Custom Authentication for detailed tutorial. For NodeJS backend, you could follow 30 DAYS OF AZURE MOBILE APPS.
Here is I have a small problem of architecture, first of all, I have two applications:
An api writes symfony 3.3
A front writes too it symfony 3.3
Then, I would like have two manner to sign in:
the first one by using of third application such as Facebook, Google or Twitter. For this part I thought of using hwiOauthBundle
Or simply by login / password. Here I thought of using FOSUerbundle
Finally I would like to have secure api, that a not connected user cannot reach the resources of the api.
What do I have to install or to develop to have all the expressed criteria higher?
In advance, thank you of your answer.
You have to setup some kind of login proxy endpoint that has the oauth client_id and secret.
Then with the username and password given by the user you have to query the backend oauth token endpoint to get an accesss token.
After that you just need to sign your request to the backend with that token.
In my case I'm using FosUserBundle for user management, FosOauthServerBundle for the Open Auth management. Both are installed in the backend.
Once installed you have to register a aAuth client. This tutorial was really helpful for me OAuth2 Explained
so i have an application based on the ionic-framework and a server side based sails.js.
my application uses data like username, passwords, user image etc.. so i though i'll be a good idea to use google sign up using OAuth 2.0.
I have no idea how to implement that to my application. could you please give me a wide detailed explanation with some examples on how OAuth 2.0 is working with sails?
Have you tried using sails-generate-auth ? It is based on passport and it generates whole authentication layer for your sails.js application including OAuth2.0 and OpenID.
Edit
More information about accessing third-party user's profile details:
next step after the oauth authentication - sails