热门标签
热门文章
- 1堆排序算法(图解详细流程)
- 2BERT在自然语言处理领域的颠覆性影响
- 3ROS局部路径规划器插件teb_local_planner规划流程概括总结_局部路径规划器ros
- 4牛人中级笔记_resourcemanager : unable to find resource
- 5二进制、八进制、十进制、十六进制之间相互转换方法的详细归纳(含详细的例题)_二进制转10进制8进制例题
- 6navicat 连接mysql报错2002-Cant‘t connect to server on “localhost“(10061)_2002cant connect to server on
- 72024最新软件测试【测试理论+ UI 自动化】面试题(内附答案)(2)_uom理论考试题库答案2024
- 8大模型落地竞逐,云计算大厂“百舸争流”
- 9spring boot + mybatis + sqlite3_springboot mybatis sqlite
- 10HighD数据集Python处理(车辆变道时本车及当前车道和目标车道前后车数据获取)
当前位置: article > 正文
Android-接入谷歌登录_id token has invalid 'aud' (audience) claim; expec
作者:Cpp五条 | 2024-06-12 06:55:26
赞
踩
id token has invalid 'aud' (audience) claim; expected "login-395608" but got
1.登录分类
授权登录 和 一键登录
一键登录在部分设备会登录不了,报白名单错误,国外的 大多数 应用使用的是授权登录,建议使用授权登录
2.申请key
在FireBase中直接创建Android 项目,会在Google Cloud 直接生成相关的key,不需要在GoogleCloud手动创建。
会生成一个Android 和 一个 Web 的配置,需要使用 Web 的 Key。
3.授权登录
class LoginActivity : BaseActivity() { companion object { private const val SIGN_LOGIN = 901 /** * google自动登录,使用的是Web的key。web项目会在Android项目生成的时候自动生成 */ private const val SERVER_CLIENT_ID = "xxx" } private lateinit var auth: FirebaseAuth private var mGoogleSignInClient: GoogleSignInClient? = null private fun signInClient() { if (mGoogleSignInClient == null) { val gso = GoogleSignInOptions.Builder(GoogleSignInOptions.DEFAULT_SIGN_IN) .requestEmail() .requestIdToken(SERVER_CLIENT_ID) .build(); mGoogleSignInClient = GoogleSignIn.getClient(this, gso); } } private fun getGoogleIntent(): Intent { var signInInten: Intent if (mGoogleSignInClient == null) { signInClient(); } signInInten = mGoogleSignInClient!!.signInIntent; return signInInten } override fun onCreate(savedInstanceState: Bundle?) { super.onCreate(savedInstanceState) ... auth = FirebaseAuth.getInstance() btnLoginGoogle.setOnClickListener { signInClient() startActivityForResult(getGoogleIntent(), SIGN_LOGIN) } } override fun onActivityResult(requestCode: Int, resultCode: Int, data: Intent?) { super.onActivityResult(requestCode, resultCode, data) when (requestCode) { SIGN_LOGIN -> { val task = GoogleSignIn.getSignedInAccountFromIntent(data); if (task == null) { Log.d("tag", "task:null") } try { val account = task.getResult(ApiException::class.java) Log.d("tag", "id:" + account.idToken) val firebaseCredential = GoogleAuthProvider.getCredential(account.idToken, null) auth.signInWithCredential(firebaseCredential) .addOnCompleteListener(this@LoginActivity) { task -> if (task.isSuccessful) { // Sign in success, update UI with the signed-in user's information Log.d("tag", "signInWithCredential:success") val user = auth.currentUser user?.getIdToken(true) ?.addOnCompleteListener(OnCompleteListener<GetTokenResult?> { task -> if (task.isSuccessful) { val idToken: String? = task.result.token // 和后台交互进行登录 } else { // Handle error -> task.getException(); } }) } else { // If sign in fails, display a message to the user. Log.w("tag", "signInWithCredential:failure", task.exception) } } } catch (e: ApiException) { Log.d("tag", "task:" + e.localizedMessage) } } } } }
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
4.一键登录
private val REQ_ONE_TAP = 2 // Can be any integer unique to the Activity private lateinit var oneTapClient: SignInClient private lateinit var signInRequest: BeginSignInRequest oneTapClient = Identity.getSignInClient(this) signInRequest = BeginSignInRequest.builder() .setPasswordRequestOptions(BeginSignInRequest.PasswordRequestOptions.builder().setSupported(true).build()) .setGoogleIdTokenRequestOptions( BeginSignInRequest.GoogleIdTokenRequestOptions.builder() .setSupported(true) .setServerClientId(ServerClientId) .setFilterByAuthorizedAccounts(false) .build() ).setAutoSelectEnabled(true).build() //https://developers.google.com/identity/one-tap/android/get-saved-credentials oneTapClient.beginSignIn(signInRequest) .addOnSuccessListener(this@LoginActivity) { result -> try { startIntentSenderForResult( result.pendingIntent.intentSender, REQ_ONE_TAP, null, 0, 0, 0, null ) } catch (e: IntentSender.SendIntentException) { Log.e("tag", "Couldn't start One Tap UI: ${e.localizedMessage}") } } .addOnFailureListener(this@LoginActivity) { e -> // No saved credentials found. Launch the One Tap sign-up flow, or // do nothing and continue presenting the signed-out UI. Log.d("tag", e.localizedMessage) }
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
onActivityResult
REQ_ONE_TAP -> { try { val credential = oneTapClient.getSignInCredentialFromIntent(data) val idToken = credential.googleIdToken val username = credential.id val password = credential.password when { idToken != null -> { // Got an ID token from Google. Use it to authenticate // with your backend. Log.d("tag", "Got ID token:" + idToken) val firebaseCredential = GoogleAuthProvider.getCredential(idToken, null) auth.signInWithCredential(firebaseCredential) .addOnCompleteListener(this@LoginActivity) { task -> if (task.isSuccessful) { // Sign in success, update UI with the signed-in user's information Log.d("tag", "signInWithCredential:success") val user = auth.currentUser user?.getIdToken(true) ?.addOnCompleteListener(OnCompleteListener<GetTokenResult?> { task -> if (task.isSuccessful) { val idToken: String? = task.result.token Log.d("tag", "uid: " + user.uid) Log.d("tag", "IDToken: " + idToken) } else { // Handle error -> task.getException(); } }) } else { // If sign in fails, display a message to the user. Log.w("tag", "signInWithCredential:failure", task.exception) } } } password != null -> { // Got a saved username and password. Use them to authenticate // with your backend. Log.d("tag", "Got password.") } else -> { // Shouldn't happen. Log.d("tag", "No ID token or password!") } } } catch (e: ApiException) { // ... } }
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
5.常见错误
有可能错误是vpn的问题,检查下自己的网络
5.1 Failure16:Cannot find a matching credential.
一键登录场景下:修改了登录模式为注册登录
5.2 Failure10:Caller not whitelisted to call this API
测试账号没有加入Google Cloud
5.3 12500
检查 debug 和 release 的签名是否配置到 firebase
5.4 Firebase ID token has incorrect “aud” (audience) claim.
后台校验失败,获取到 idToken 以后还需要用 GoogleAuthProvider 的api进行二次处理
5.5 Firebase Installations Service is unavailable.
网络问题,需要在控制台才能看到错误信息,不会在登录回调里面展示。连接外网
com.google.firebase.installations.FirebaseInstallationsException: Firebase Installations Service is unavailable. Please try again later.
资料
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/Cpp五条/article/detail/706887
推荐阅读
相关标签
