Library to streamline Google authentication from the command-line.
Project description
Overview
The Google API OAuth authorization process is very complex when running from command-line applications:
Developer: Request a URL from the Google client-tools.
Developer: Present the URL to the user and have them open it in a browser.
User: Logs-in.
User: Acknowledge that the tool will be able to access user’s data.
Google: Authorization portal provides a code/token.
User: Provides the code to the tool at the command-line.
Developer: Does a final authorization with Google using the token.
The tool must also periodically refresh its authorization (whenever the expiration timestamp is reached).
This tool eliminates most of the steps:
Developer: Provide an authorization object containing the developer’s identity information.
Us: Create a temporary webserver on an available port.
Us: Build a URL that takes the local webserver as the redirect URI.
Us: Open the Google authentication portal in the default web browser.
User: Acknowledges the authorization in the browser.
Google: Authorize and redirect to the local, temporary webserver (passes the authorization token as an argument). Since Google does not need to talk directly to the webserver (the browser just redirects to a localhost URL), firewalls do not matter.
Us: The temporary webserver receives and records the token.
Us: The webserver is terminated and the authorization object records the token.
Notice that now only one step needs to be implemented by the developer and only one step needs to be performed by the user.
Implementation Requirements
An interactive browser (e.g. Chrome, Lynx, etc..) is available and can be opened during install/setup. The user will have to manually close this when finished.
An authorization token can be stored on the filesystem.
Usage
Build your client-identity:
client_id = 'abc' client_secret = 'def' cc = googleautoauth.authorize.build_client_credentials(client_id, client_secret)
Create a GoogleAuthorizer object:
storage_filepath = '~/.token'
scopes = [
'...',
]
ab = googleautoauth.auto_auth.AuthorizerBridge(storage_filepath, cc, scopes)
Create an AutoAuth object:
aa = googleautoauth.auto_auth.AutoAuth(ab)
Run the authorization process detailed above:
aa.get_and_write_creds()
Frequently check and refresh token:
ab.authorize.check_for_renew()
This call has a trivial cost if the token does not need to be refreshed.
For practical examples, see the tests in tests/test_authorize.py.
Testing
To run the tests (requires user interaction with the browser):
$ ./test.sh
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
