The permissions or "authority" the principal has to access data or perform Pre-created credentials in your app's code. App authentication is usually carried out using App authentication The act of an app authenticating directly to Google services on behalf of User authentication can be incorporated into an app using The user uses a username and password combination to verify their identity UserĪuthentication is usually carried out through a signing in process in which When writing Google WorkspaceĪpps, you should be aware of these types of authentication: User authentication The act of a user authenticating (signing in) to your app. On behalf of a user, is who they say they are. The act of ensuring that a principal, which can be a user or an app acting User to grant new scopes of access, resulting in a new request to get anįollowing is a list of terms related to authentication and authorization: Authentication Request more resources: If additional access is needed, your app asks the Get a refresh token (optional): If your app needs access to a Google APIīeyond the lifetime of a single access token, it can obtain a refresh token. Invoke the relevant APIs and access the resources. The requested scopes of access, your app disables any features limited by theĪccess requested resources: Your app uses the access token from Google to If the returned list of scopes is more limited than Google returns an access token: The access token contains a list of The request is sent to the Google authorization server Of access, your app bundles the credentials and the user-approved scopes ofĪccess into a request. Send approved request for resources: If the user consents to the scopes Grant your app access to the requested data. Google displays the OAuth consent screen so the user can decide whether to Request resources: When your app needs access to Google resources, itĪsks Google using the relevant scopes of access you previously registered.Īsk for user consent: If your app is authenticating as an end user, User, a sign-in prompt might be displayed. High-level steps of an authentication andĬonfigure your Google Cloud project and app: Duringĭevelopment, you register your app in the Google Cloud console, definingĪuthorization scopes and access credentials to authenticate your app with anĪPI key, end user credential, or service account credential.Īuthenticate your app for access: When your app runs, the registeredĪccess credentials are evaluated. The following diagram shows the high-level steps of authentication andĪuthorization for Google Workspace APIs: Figure 1. Some information in this document might not pertain to Note: This overview focuses on authentication and authorization for Should know before implementing authentication and authorization in your app. This document identifies key terms that you Authentication and authorization are mechanisms used to verify identity andĪccess to resources, respectively.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |