Refresh before request if neccesary and multipart only when resource and media body specified #235
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Also #122. |
ryanseys
changed the title
| @@ -86,7 +86,8 @@ JWT.prototype.refreshToken_ = function(ignored_, opt_callback) { | |||
| opt_callback && opt_callback(err, { | |||
| access_token: token, | |||
| token_type: 'Bearer', | |||
| expires_in: that.gapi.token_expires | |||
| expires_in: that.gapi.token_expires, | |||
This comment was marked as spam.
This comment was marked as spam.
Sorry, something went wrong.
This comment was marked as spam.
This comment was marked as spam.
Sorry, something went wrong.
This comment was marked as spam.
This comment was marked as spam.
Sorry, something went wrong.
This comment was marked as spam.
This comment was marked as spam.
Sorry, something went wrong.
This comment was marked as spam.
This comment was marked as spam.
Sorry, something went wrong.
|
Media upload changes LGTM, commented on a few issues about auth related changes. |
ryanseys
added a commit
that referenced
this pull request
Jul 30, 2014
Refresh before request if neccesary and multipart only when resource and media body specified
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Currently when we make an API request and the request responds with an authentication error, we attempt to refresh the
access_tokenusing therefresh_tokenand then re-attempt the request. If the request has a multipart body, it will not be attached to the re-attempted request due to the constraints of the library. This is exceptionally true for multipart bodies whose data is coming from a readable stream. To mitigate these issues, this PR makes the following changes:expiry_date(an added property) of the credentials object to ensure that the token has not expired. If there is noexpiry_datevalue, assume it has not expired. If it has expired, refresh the token before making the request.access_tokenin the credentials, and there is arefresh_token, use it to refresh the token before making the request.refresh_token, never attempt to refresh (because you can't)access_tokennorrefresh_token, return an error in the callback.This will give more responsibility to the developer to ensure that their credentials are kept up to date.
Also added
oauth2client.revokeCredentials()which will clear the credentials object and attempt to revoke theaccess_token.Bonus: Affects #229 where multipart request was built for all media requests. Now multipart will only be built for requests with
resourceandmedia.body. Ifresourceis only specified, it's a simple JSON request, if onlymedia.bodyis specified, then uploadType=media is used with the body (not a multipart).