如何长时间访问（离线）Google API？

Posted 2023-03-09

【中文标题】如何长时间访问（离线）Google API？

【英文标题】：How to take long access (offline) to Google API?

【发布时间】：2020-07-01 01:03:03

【问题描述】：

我需要解决的任务是通过 WebBrowser 中的 JS 获得对 Google Sheets 和 Google Drive 的“gapi.auth2”访问权限，而不是长时间直接使用用户授予的权限（直到用户取回此权限）权限）。

我需要有可能更改（添加一些信息）到用户的 Google 表格。用户必须配置将添加哪些信息。这就是为什么我需要离线保存和使用访问信息（访问和刷新令牌）。

我试过的代码：

<div>
    <p>Google Sheets API Quickstart</p>

    <!--Add buttons to initiate auth sequence and sign out-->
    <button id="authorize_button" style="display: none;">Authorize</button>
    <button id="signout_button" style="display: none;">Sign Out</button>

    <pre id="content" style="white-space: pre-wrap;"></pre>

    <script type="text/javascript">
  // Client ID and API key from the Developer Console
  var CLIENT_ID = 'MyID.apps.googleusercontent.com';
  var API_KEY = 'MyKey';

  // Array of API discovery doc URLs for APIs used by the quickstart
  var DISCOVERY_DOCS = ["https://sheets.googleapis.com/$discovery/rest?version=v4"];

  // Authorization scopes required by the API; multiple scopes can be
  // included, separated by spaces.
  var SCOPES = "https://www.googleapis.com/auth/spreadsheets https://www.googleapis.com/auth/drive";

  var authorizeButton = document.getElementById('authorize_button');
  var signoutButton = document.getElementById('signout_button');

  /**
   *  On load, called to load the auth2 library and API client library.
   */
  function handleClientLoad() 
    gapi.load('client:auth2', initClient);
  

  /**
   *  Initializes the API client library and sets up sign-in state
   *  listeners.
   */
  function initClient() 
    gapi.client.init(
      apiKey: API_KEY,
      clientId: CLIENT_ID,
      discoveryDocs: DISCOVERY_DOCS,
      scope: SCOPES
    ).then(function () 
      // Listen for sign-in state changes.
      gapi.auth2.getAuthInstance().isSignedIn.listen(updateSigninStatus);

      // Handle the initial sign-in state.
      updateSigninStatus(gapi.auth2.getAuthInstance().isSignedIn.get());
      authorizeButton.onclick = handleAuthClick;
      signoutButton.onclick = handleSignoutClick;
    , function(error) 
      appendPre(JSON.stringify(error, null, 2));
    );
  

  /**
   *  Called when the signed in status changes, to update the UI
   *  appropriately. After a sign-in, the API is called.
   */
  function updateSigninStatus(isSignedIn) 
    if (isSignedIn) 
      authorizeButton.style.display = 'none';
      signoutButton.style.display = 'block';
      listMajors();
     else 
      authorizeButton.style.display = 'block';
      signoutButton.style.display = 'none';
    
  

  /**
   *  Sign in the user upon button click.
   */
        function handleAuthClick(event) 
            let instance = gapi.auth2.getAuthInstance();
            console.log(instance);
            let promise = instance.signIn();
            console.log(gapi.auth2.getAuthInstance());
            console.log(promise);
            console.log(gapi.client);
            console.log(gapi.client.getToken());
            console.log(gapi.auth2);

            console.log(gapi.auth2.getAuthInstance().currentUser.get().getAuthResponse());
            console.log(gapi.auth2.getAuthInstance().currentUser.get());
            console.log(gapi.auth2.getAuthInstance().currentUser);

            console.log(instance.currentUser);
            console.log(instance.currentUser.ie);
            console.log(instance.currentUser.ie.uc);
            console.log(instance.currentUser.ie.uc.access_token);
            console.log(auth);
            let auth = instance.currentUser.ie.uc.access_token;

            let a = document.getElementById('my');
            a.href += auth;

            let xhr = new XMLHttpRequest();
            xhr.setRequestHeader('Authorization', 'Bearer ' + "ya29.a0Adw1xeXfLePcaSdeluMmvtDrnrgbDibLToC22Vw5yOfIhOpQ1TqxFlROBozsBPbXL1GRYHumMltcLuJWNygtZ1m8IRpfx9n7I-oLQi4BpgaU98nx7InjquPqJ8Yc2aGvN9ac6HI9rqlDPJFTbhxKP37SzG_31x_u6vs");
            xhr.
            xhr.send();


  

  /**
   *  Sign out the user upon button click.
   */
  function handleSignoutClick(event) 
    gapi.auth2.getAuthInstance().signOut();
  

  /**
   * Append a pre element to the body containing the given message
   * as its text node. Used to display the results of the API call.
   *
   * param string message Text to be placed in pre element.
   */
  function appendPre(message) 
    var pre = document.getElementById('content');
    var textContent = document.createTextNode(message + '\n');
    pre.appendChild(textContent);
  

  /**
   * Print the names and majors of students in a sample spreadsheet:
   * https://docs.google.com/spreadsheets/d/1BxiMVs0XRA5nFMdKvBdBZjgmUUqptlbs74OgvE2upms/edit
   */
  function listMajors() 
    gapi.client.sheets.spreadsheets.values.get(
      spreadsheetId: '1BxiMVs0XRA5nFMdKvBdBZjgmUUqptlbs74OgvE2upms',
      range: 'Class Data!A2:E',
    ).then(function(response) 
      var range = response.result;
      if (range.values.length > 0) 
        appendPre('Name, Major:');
        for (i = 0; i < range.values.length; i++) 
          var row = range.values[i];
          // Print columns A and E, which correspond to indices 0 and 4.
          appendPre(row[0] + ', ' + row[4]);
        
       else 
        appendPre('No data found.');
      
    , function(response) 
      appendPre('Error: ' + response.result.error.message);
    );
        
    </script>
</div>

<script async defer src="https://apis.google.com/js/api.js"
        onload="this.onload=function();handleClientLoad()"
        onreadystatechange="if (this.readyState === 'complete') this.onload()">
</script>

我也尝试在浏览器中输入：“https://accounts.google.com/o/oauth2/auth?access_type=offline&prompt=consent&redirect_uri=https://localhost:44325/&client_id=MyID.apps.googleusercontent.com&scope=https://www.googleapis.com/auth/spreadsheets+https://www.googleapis.com/auth/drive&response_type=code&state=/profile”

redirect_uri 错误，在控制台中添加它没有帮助。

当我尝试使用 Quichstart .NET 应用程序时，它运行良好，但我只得到我的令牌，而不是我的客户。

如何使用 JS 离线访问我的客户 Google 数据？如果我的客户端允许我通过 WebBrowser 中的 JS 访问，我在哪里可以获得刷新令牌？

【参考方案1】：

正确的链接是 - https://accounts.google.com/o/oauth2/auth?access_type=offline&prompt=consent&redirect_uri=https://localhost:44325&client_id=MyID.apps.googleusercontent.com&scope=https://www.googleapis.com/auth/spreadsheets+https://www.googleapis.com/auth/drive&response_type=code&state=/profile

“redirect_uri=https://localhost:44325”不是“redirect_uri=https://localhost:44325/”

然后当我被重定向到“https://localhost:44325/”时，链接是下一个“https://localhost:44325/?state=/profile&code=4/xwFM---SOME SYMBOLS---&scope=https://www.googleapis.com/auth/drive%20https://www.googleapis.com/auth/spreadsheets”

我猜“4/xwFM---SOME SYMBOLS---”是我的刷新令牌。我明天去看看。

UPD。然后我在 POST 请求中使用此代码“https://accounts.google.com/o/oauth2/token”，并设置以下字段：

grant_type=authorization_code
code='the code from the previous step'
client_id='the client ID token created in the APIs Console'
client_secret='the client secret corresponding to the client ID'
redirect_uri='the URI registered with the client ID'

详情：https://developers.google.com/android-publisher/authorization