Options
All
  • Public
  • Public/Protected
  • All
Menu

Class OAuth2Client

Hierarchy

Index

Constructors

Properties

Methods

Constructors

constructor

  • Handles OAuth2 flow for Google APIs.

    Parameters

    Returns OAuth2Client

  • Parameters

    • Optional clientId: string
    • Optional clientSecret: string
    • Optional redirectUri: string

    Returns OAuth2Client

Properties

Optional _clientId

_clientId?: string

Optional _clientSecret

_clientSecret?: string

Optional apiKey

apiKey?: string

credentials

credentials: Credentials

eagerRefreshThresholdMillis

eagerRefreshThresholdMillis: number

forceRefreshOnFailure

forceRefreshOnFailure: boolean

Optional projectId

projectId?: null | string

Optional quotaProjectId

quotaProjectId?: string

The quota project ID. The quota project can be used by client libraries for the billing purpose. See Working with quotas

Optional refreshHandler

refreshHandler?: GetRefreshHandlerCallback

transporter

transporter: Transporter

universeDomain

universeDomain: string

Methods

generateAuthUrl

  • Generates URL for consent page landing.

    Parameters

    Returns string

    URL to consent page.

generateCodeVerifier

  • generateCodeVerifier(): void

  • Returns void

generateCodeVerifierAsync

getAccessToken

  • Get a non-expired access token, after refreshing if necessary

    Returns Promise<GetAccessTokenResponse>

  • Parameters

    Returns void

getFederatedSignonCerts

  • Gets federated sign-on certificates to use for verifying identity tokens. Returns certs as array structure, where keys are key ids, and values are certificates in either PEM or JWK format.

    Returns Promise<FederatedSignonCertsResponse>

  • Parameters

    Returns void

getFederatedSignonCertsAsync

getIapPublicKeys

  • Gets federated sign-on certificates to use for verifying identity tokens. Returns certs as array structure, where keys are key ids, and values are certificates in either PEM or JWK format.

    Returns Promise<IapPublicKeysResponse>

  • Parameters

    Returns void

getIapPublicKeysAsync

  • Returns Promise<IapPublicKeysResponse>

getRequestHeaders

  • getRequestHeaders(url?: string): Promise<Headers>

  • The main authentication interface. It takes an optional url which when present is the endpoint being accessed, and returns a Promise which resolves with authorization header fields.

    In OAuth2Client, the result has the form: { Authorization: 'Bearer ' }

    Parameters

    • Optional url: string

      The optional url being authorized

    Returns Promise<Headers>

getToken

  • Gets the access token for the given code.

    Parameters

    • code: string

      The authorization code.

    Returns Promise<GetTokenResponse>

  • Parameters

    Returns Promise<GetTokenResponse>

  • Parameters

    Returns void

  • Parameters

    Returns void

getTokenInfo

  • getTokenInfo(accessToken: string): Promise<TokenInfo>

  • Obtains information about the provisioned access token. Especially useful if you want to check the scopes that were provisioned to a given token.

    Parameters

    • accessToken: string

      Required. The Access Token for which you want to get user info.

    Returns Promise<TokenInfo>

on

  • Subscribes a listener to the tokens event triggered when a token is generated.

    Parameters

    Returns OAuth2Client

refreshAccessToken

  • Retrieves the access token using refresh token

    Returns Promise<RefreshAccessTokenResponse>

  • Parameters

    Returns void

request

  • Provides a request implementation with OAuth 2.0 flow. If credentials have a refresh_token, in cases of HTTP 401 and 403 responses, it automatically asks for a new access token and replays the unsuccessful request.

    Type parameters

    • T

    Parameters

    Returns GaxiosPromise<T>

    Request object

  • Type parameters

    • T

    Parameters

    Returns void

revokeCredentials

revokeToken

setCredentials

  • Sets the auth credentials.

    Parameters

    Returns void

verifyIdToken

  • Verify id token is token by checking the certs and audience

    Parameters

    Returns Promise<LoginTicket>

  • Parameters

    Returns void

verifySignedJwtWithCerts

  • verifySignedJwtWithCerts(): void

  • Returns void

verifySignedJwtWithCertsAsync

  • verifySignedJwtWithCertsAsync(jwt: string, certs: Certificates | PublicKeys, requiredAudience?: string | string[], issuers?: string[], maxExpiry?: number): Promise<LoginTicket>

  • Verify the id token is signed with the correct certificate and is from the correct audience.

    Parameters

    • jwt: string

      The jwt to verify (The ID Token in this case).

    • certs: Certificates | PublicKeys

      The array of certs to test the jwt against.

    • Optional requiredAudience: string | string[]

      The audience to test the jwt against.

    • Optional issuers: string[]

      The allowed issuers of the jwt (Optional).

    • Optional maxExpiry: number

      The max expiry the certificate can be (Optional).

    Returns Promise<LoginTicket>

    Returns a promise resolving to LoginTicket on verification.

Static getRevokeTokenUrl

  • getRevokeTokenUrl(token: string): string

  • Generates an URL to revoke the given token.

    Parameters

    • token: string

      The existing token to be revoked.

    Returns string