if all_args:
url += "?" + urllib_parse.urlencode(all_args)
- callback = functools.partial(self._on_facebook_request, callback)
+ callback = functools.partial(self._on_oauth2_request, callback)
http = self.get_auth_http_client()
if post_args is not None:
http.fetch(url, method="POST", body=urllib_parse.urlencode(post_args),
"""
_OAUTH_AUTHORIZE_URL = "https://accounts.google.com/o/oauth2/auth"
_OAUTH_ACCESS_TOKEN_URL = "https://accounts.google.com/o/oauth2/token"
+ _OAUTH_USERINFO_URL = "https://www.googleapis.com/oauth2/v1/userinfo"
_OAUTH_NO_CALLBACKS = False
_OAUTH_SETTINGS_KEY = 'google_oauth'
@tornado.gen.coroutine
def get(self):
if self.get_argument('code', False):
- user = yield self.get_authenticated_user(
+ access = yield self.get_authenticated_user(
redirect_uri='http://your.site.com/auth/google',
code=self.get_argument('code'))
+ args = dict(access_token=access["access_token"])
+ url = self._OAUTH_USERINFO_URL + "?" + urllib_parse.urlencode(args)
+ user = yield self.oauth2_request(url)
# Save the user with e.g. set_secure_cookie
else:
yield self.authorize_redirect(
self._OAUTH_REDIRECT_URI = test.get_url('/client/login')
self._OAUTH_AUTHORIZE_URL = test.get_url('/google/oauth2/authorize')
self._OAUTH_ACCESS_TOKEN_URL = test.get_url('/google/oauth2/token')
+ self._OAUTH_USERINFO_URL = test.get_url('/google/oauth2/userinfo')
@gen.coroutine
def get(self):
code = self.get_argument('code', None)
if code is not None:
# retrieve authenticate google user
- user = yield self.get_authenticated_user(self._OAUTH_REDIRECT_URI,
- code)
+ access = yield self.get_authenticated_user(self._OAUTH_REDIRECT_URI,
+ code)
+ url = self._OAUTH_USERINFO_URL + "?access_token=" + access["access_token"]
+ user = yield self.oauth2_request(url)
# return the user as json
self.write(user)
else:
})
+class GoogleOAuth2UserinfoHandler(RequestHandler):
+ def get(self):
+ assert self.get_argument('access_token') == 'fake-access-token'
+ # return a fake user
+ self.finish({
+ u'name': u'Foo',
+ u'email': u'foo@example.com'
+ })
+
+
class GoogleOAuth2Test(AsyncHTTPTestCase):
def get_app(self):
return Application(
# simulated google authorization server endpoints
('/google/oauth2/authorize', GoogleOAuth2AuthorizeHandler),
('/google/oauth2/token', GoogleOAuth2TokenHandler),
+ ('/google/oauth2/userinfo', GoogleOAuth2UserinfoHandler),
],
google_oauth={
"key": 'fake_google_client_id',
def test_google_login(self):
response = self.fetch('/client/login')
self.assertDictEqual({
- u('access_token'): u('fake-access-token'),
- u('expires_in'): u('never-expires'),
+ u('name'): u('Foo'),
+ u('email'): u('foo@example.com'),
}, json_decode(response.body))
projects / thirdparty / tornado.git / commitdiff
