Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

maybe possible to avoid tokeninfo api call for google grant #6

Open
svycka opened this issue Feb 3, 2017 · 2 comments
Open

maybe possible to avoid tokeninfo api call for google grant #6

svycka opened this issue Feb 3, 2017 · 2 comments

Comments

@svycka
Copy link
Owner

svycka commented Feb 3, 2017

if we could use https://accounts.google.com/.well-known/openid-configuration certs from google we could check token locally. I think they changing once a day or something so I could cache them.
@pezhman991
Copy link

Hey
Good module.tnx
but I have a problem to tokenInfo and can't access that

@svycka
Copy link
Owner Author

svycka commented Aug 6, 2018

@pezhman991 this is not implemented at the moment but maybe I should, but for now you have two options to get token info:

  1. you can extend Svycka\SocialUser\OAuth2\GrantType\Google and implement Svycka\SocialUser\UserProfileInterface with data you need.
  2. You can use token from request parameters as it is JWT token and for example, decode it with libraries provided here https://jwt.io/ or just using base64_decode() php function if you do this after user authentication.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@svycka @pezhman991