java使用Oauth连接到Google计算引擎
我正试图使用Java连接到谷歌计算引擎,但遇到一个异常对我来说意义不大
我下面的example是这样说的:
/** Authorizes the installed application to access user's protected data. */
private static Credential authorize() throws Exception {
// load client secrets
GoogleClientSecrets clientSecrets = GoogleClientSecrets.load(JSON_FACTORY,
new InputStreamReader(CalendarSample.class.getResourceAsStream("/client_secrets.json")));
// set up authorization code flow
GoogleAuthorizationCodeFlow flow = new GoogleAuthorizationCodeFlow.Builder(
httpTransport, JSON_FACTORY, clientSecrets,
Collections.singleton(CalendarScopes.CALENDAR)).setDataStoreFactory(dataStoreFactory)
.build();
// authorize
return new AuthorizationCodeInstalledApp(flow, new LocalServerReceiver()).authorize("user");
}
为了获得包含凭证的json文件,我转到cloud。谷歌。com,转到控制台中的我的应用程序并单击凭据,我单击Create new ClientId
,选择Service Account
和JSON Key
这将下载一个_________.json
文件
在public static void main(String ... args) throws Exception {
中,我有以下代码来读取凭证文件:
GoogleClientSecrets clientSecrets = GoogleClientSecrets.load(JSON_FACTORY,
new FileReader("________9f.json"));
执行System.out.println(clientSecrets);
打印出整个json文件,其中包含键private_key_id
、client_email
、client_id
和type
现在,如果我继续使用示例代码:
// set up authorization code flow
GoogleAuthorizationCodeFlow flow = new GoogleAuthorizationCodeFlow.Builder(
httpTransport, JSON_FACTORY, clientSecrets,
Collections.singleton(ComputeScopes.COMPUTE)).setDataStoreFactory(dataStoreFactory).build();
// authorize
new AuthorizationCodeInstalledApp(flow, new LocalServerReceiver()).authorize("user");
这给了我以下线索:
Exception in thread "main" java.lang.IllegalArgumentException at com.google.api.client.repackaged.com.google.common.base.Preconditions.checkArgument(Preconditions.java:76) at com.google.api.client.util.Preconditions.checkArgument(Preconditions.java:37) at com.google.api.client.googleapis.auth.oauth2.GoogleClientSecrets.getDetails(GoogleClientSecrets.java:82) at com.google.api.client.googleapis.auth.oauth2.GoogleAuthorizationCodeFlow$Builder.(GoogleAuthorizationCodeFlow.java:195) at com.mycee.TestGoogle.main(TestGoogle.java:52) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at com.intellij.rt.execution.application.AppMain.main(AppMain.java:140)
缺少的变量(目前都是静态变量)如下所示:
JsonFactory JSON_FACTORY = JacksonFactory.getDefaultInstance();
HttpTransport httpTransport = GoogleNetHttpTransport.newTrustedTransport();
FileDataStoreFactory dataStoreFactory = new FileDataStoreFactory(DATA_STORE_DIR);
java.io.File DATA_STORE_DIR = new java.io.File(System.getProperty("user.home"), ".store/compute_engine_sample");
我正试图通过Java来管理我的谷歌计算引擎实例,你知道我在做什么吗
更新:
波姆。按要求使用xml:
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>com.jvaas</groupId>
<artifactId>jvaas-cloud</artifactId>
<packaging>war</packaging>
<version>1.0.0</version>
<name>jVaaS Cloud</name>
<properties>
<jclouds.version>1.9.0</jclouds.version>
<project.http.version>1.19.0</project.http.version>
<project.oauth.version>1.19.0</project.oauth.version>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
</properties>
<dependencies>
<dependency>
<groupId>com.google.http-client</groupId>
<artifactId>google-http-client-jackson2</artifactId>
<version>${project.http.version}</version>
</dependency>
<dependency>
<groupId>com.google.oauth-client</groupId>
<artifactId>google-oauth-client-jetty</artifactId>
<version>${project.oauth.version}</version>
</dependency>
<dependency>
<groupId>com.google.apis</groupId>
<artifactId>google-api-services-compute</artifactId>
<version>v1-rev27-1.19.0</version>
</dependency>
</dependencies>
</project>
谷歌测试。默认包中的java(kots.json
位于src/main/resources
):
import com.google.api.client.extensions.java6.auth.oauth2.AuthorizationCodeInstalledApp;
import com.google.api.client.extensions.jetty.auth.oauth2.LocalServerReceiver;
import com.google.api.client.googleapis.auth.oauth2.GoogleAuthorizationCodeFlow;
import com.google.api.client.googleapis.auth.oauth2.GoogleClientSecrets;
import com.google.api.client.googleapis.javanet.GoogleNetHttpTransport;
import com.google.api.client.http.HttpTransport;
import com.google.api.client.json.JsonFactory;
import com.google.api.client.json.jackson2.JacksonFactory;
import com.google.api.client.util.store.FileDataStoreFactory;
import com.google.api.services.compute.Compute;
import com.google.api.services.compute.ComputeScopes;
import com.google.api.services.compute.model.Instance;
import com.google.api.services.compute.model.InstanceList;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.util.Arrays;
import java.util.List;
public class TestGoogle {
private static final java.io.File DATA_STORE_DIR = new java.io.File(System.getProperty("user.home"), ".store/compute_engine_sample");
private static FileDataStoreFactory dataStoreFactory;
private static HttpTransport httpTransport;
private static final String zoneName = "us-central1-a";
private static final JsonFactory JSON_FACTORY = JacksonFactory.getDefaultInstance();
private static final List<String> SCOPES = Arrays.asList(ComputeScopes.COMPUTE_READONLY);
public static void main(String... args) throws Exception {
httpTransport = GoogleNetHttpTransport.newTrustedTransport();
dataStoreFactory = new FileDataStoreFactory(DATA_STORE_DIR);
InputStream in = TestGoogle.class.getResourceAsStream("/kots.json");
GoogleClientSecrets clientSecrets = GoogleClientSecrets.load(JSON_FACTORY, new InputStreamReader(in));
GoogleAuthorizationCodeFlow flow = // <- fails here
new GoogleAuthorizationCodeFlow.Builder(
httpTransport, JSON_FACTORY, clientSecrets, SCOPES)
.setDataStoreFactory(dataStoreFactory)
.setAccessType("online").setApprovalPrompt("auto")
.build();
new AuthorizationCodeInstalledApp(flow, new LocalServerReceiver()).authorize("user");
}
}
完整堆栈跟踪:
Exception in thread "main" java.lang.IllegalArgumentException
at com.google.api.client.repackaged.com.google.common.base.Preconditions.checkArgument(Preconditions.java:76)
at com.google.api.client.util.Preconditions.checkArgument(Preconditions.java:37)
at com.google.api.client.googleapis.auth.oauth2.GoogleClientSecrets.getDetails(GoogleClientSecrets.java:82)
at com.google.api.client.googleapis.auth.oauth2.GoogleAuthorizationCodeFlow$Builder.<init>(GoogleAuthorizationCodeFlow.java:195)
at TestGoogle.main(TestGoogle.java:38)
反编译相关的类文件这些是相关的代码片段:
GoogleAuthorizationCodeFlow。爪哇:195
public Builder(HttpTransport transport, JsonFactory jsonFactory, GoogleClientSecrets clientSecrets, Collection<String> scopes) {
super(BearerToken.authorizationHeaderAccessMethod(), transport, jsonFactory, new GenericUrl("https://accounts.google.com/o/oauth2/token"), new ClientParametersAuthentication(clientSecrets.getDetails().getClientId(), clientSecrets.getDetails().getClientSecret()), clientSecrets.getDetails().getClientId(), "https://accounts.google.com/o/oauth2/auth");
this.setScopes(scopes);
}
谷歌客户机密。爪哇:82
public GoogleClientSecrets.Details getDetails() {
Preconditions.checkArgument(this.web == null != (this.installed == null));
return this.web == null?this.installed:this.web;
}
先决条件。爪哇:37
public static void checkArgument(boolean expression) {
com.google.api.client.repackaged.com.google.common.base.Preconditions.checkArgument(expression);
}
先决条件。爪哇:76
public static void checkArgument(boolean expression) {
if(!expression) {
throw new IllegalArgumentException();
}
}
科茨。屏蔽所有敏感数据的json:
{
"private_key_id": "________________________________________",
"private_key": "-----BEGIN PRIVATE KEY-----\n__________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________\n-----END PRIVATE KEY-----\n",
"client_email": "_____________________________________________@developer.gserviceaccount.com",
"client_id": "_____________________________________________.apps.googleusercontent.com",
"type": "service_account"
}
科茨。json是我在云中点击这个按钮时生成的。谷歌。com
更新,似乎我的json文件不正确,这种格式为我修复了它(复制自与@We are Borg的对话):
{"installed": {
"client_id": "yourid",
"auth_uri": "https://accounts.google.com/o/oauth2/auth",
"token_uri": "https://accounts.google.com/o/oauth2/token",
"auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
"client_email": "",
"client_x509_cert_url": "",
"client_secret": "yoursecret",
"redirect_uris": ["urn:ietf:wg:oauth:2.0:oob", "http://tooltank.de"]
}}
正确的下载位置是创建一个新的客户端id并选择iInstalled应用程序
# 1 楼答案
我从谷歌云下载的原始json秘密文件也有同样的问题
通过设置一个包含json秘密文件路径的env变量,一切正常
运行这条线路:
但当我想把我的秘密文件作为资源包含在我的项目中时,出现了像你这样的问题
所以我最终发现这条简单的线解决了这个问题:
希望有帮助