Get user info via Google API

Question

Is it possible to get information from user s profile via Google API  If it is possible  which API should I use    I m interesting in such information    Url to the user profile  e g  https   profiles google com 115063121183536852887   Gender  sex   Profile photo    Also it would be cool to get other information from user s profile

User · Answer

If you re in a client-side web environment  the new auth2 javascript API contains a much-needed getBasicProfile   function  which returns the user s name  email  and image URL     https   developers google com identity sign-in web reference googleusergetbasicprofile

User · Answer

This scope https   www googleapis com auth userinfo profile has been deprecated now  Please look at https   developers google com   api auth-migration timetable    New scope you will be using to get profile info is  profile or https   www googleapis com auth plus login  and the endpoint is - https   www googleapis com plus v1 people  userId  - userId can be just  me  for currently logged in user

User · Answer

Add this to the scope - https   www googleapis com auth userinfo profile  And after authorization is done  get the information from - https   www googleapis com oauth2 v1 userinfo alt json  It has loads of stuff -  including name  public profile url  gender  photo etc

User · Answer

scope - https   www googleapis com auth userinfo profile  return youraccess token   access token   get https   www googleapis com oauth2 v1 userinfo alt json amp access token youraccess token  you will get json       id    xx     name    xx     given name    xx     family name    xx     link    xx     picture    xx     gender    xx     locale    xx      To Tahir Yasin   This is a php example  You can use json decode function to get userInfo array    q    https   www googleapis com oauth2 v1 userinfo access token xxx    json   file get contents  q    userInfoArray   json decode  json true    googleEmail    userInfoArray  email     googleFirstName    userInfoArray  given name     googleLastName    userInfoArray  family name

User · Answer

If you only want to fetch the Google user id  name and picture for a visitor of your web app - here is my pure PHP service side solution for the year 2020 with no external libraries used - If you read the Using OAuth 2 0 for Web Server Applications guide by Google  and beware  Google likes to change links to its own documentation   then you have to perform only 2 steps   Present the visitor a web page asking for the consent to share her name with your web app Then take the  quot code quot  passed by the above web page to your web app and fetch a token  actually 2  from Google   One of the returned tokens is called  quot id token quot  and contains the user id  name and photo of the visitor  Here is the PHP code of a web game by me  Initially I was using Javascript SDK  but then I have noticed that fake user data could be passed to my web game  when using client side SDK only  especially the user id  which is important for my game   so I have switched to using PHP on the server side   lt  php  const APP ID          1234567890-abcdefghijklmnop apps googleusercontent com   const APP SECRET      abcdefghijklmnopq    const REDIRECT URI    https   the url of this PHP script    const LOCATION        Location  https   accounts google com o oauth2 v2 auth    const TOKEN URL       https   oauth2 googleapis com token   const ERROR           error   const CODE            code   const STATE           state   const ID TOKEN        id token      use a  quot random quot  string based on the current date as protection against CSRF  CSRF PROTECTION     md5 date  m d y      if  isset   REQUEST ERROR    amp  amp    REQUEST ERROR         exit   REQUEST ERROR       if  isset   REQUEST CODE    amp  amp    REQUEST CODE   amp  amp   CSRF PROTECTION      REQUEST STATE          tokenRequest              code             gt    REQUEST CODE            client id        gt  APP ID           client secret    gt  APP SECRET           redirect uri     gt  REDIRECT URI           grant type       gt   authorization code                postContext   stream context create            http    gt                 header     gt   quot Content-type  application x-www-form-urlencoded r n quot                method     gt   POST                content    gt  http build query  tokenRequest                           Step  2  send POST request to token URL and decode the returned JWT id token      tokenResult   json decode file get contents TOKEN URL  false   postContext   true       error log print r  tokenResult  true         id token       tokenResult ID TOKEN         Beware - the following code does not verify the JWT signature        userResult    json decode base64 decode str replace           str replace  -        explode       id token  1      true         user id        userResult  sub         given name     userResult  given name         family name    userResult  family name         photo          userResult  picture         if   user id    NULL  amp  amp   given name    NULL              print your web app or game here  based on  user id etc          exit              userConsent          client id        gt  APP ID       redirect uri     gt  REDIRECT URI       response type    gt   code        scope            gt   profile        state            gt   CSRF PROTECTION        Step  1  redirect user to a the Google page asking for user consent header LOCATION   http build query  userConsent       gt   You could use a PHP library to add additional security by verifying the JWT signature  For my purposes it was unnecessary  because I trust that Google will not betray my little web game by sending fake visitor data  Also  if you want to get more personal data of the visitor  then you need a third step  const USER INFO       https   www googleapis com oauth2 v3 userinfo access token    const ACCESS TOKEN    access token       Step  3  send GET request to user info URL  access token    tokenResult ACCESS TOKEN    userResult   json decode file get contents USER INFO    access token   true    Or you could get more permissions on behalf of the user - see the long list at the OAuth 2 0 Scopes for Google APIs doc  Finally  the APP ID and APP SECRET constants used in my code - you get it from the Google API console

User · Answer

There are 3 steps that needs to be run    Register your app s client id from Google API console Ask your end user to give consent using this api https   developers google com identity protocols OpenIDConnect sendauthrequest Use google s oauth2 api as described at https   any-api com googleapis com oauth2 docs userinfo oauth2 userinfo v2 me get using the token obtained in step 2   Though still I could not find how to fill  fields  parameter properly     It is very interesting that this simplest usage is not clearly described anywhere  And i believe there is a danger  you should pay attention to the verified emailparameter coming in the response  Because if I am not wrong it may yield fake emails to register your application   This is just my interpretation  has a fair chance that I may be wrong    I find facebook s OAuth mechanics much much clearly described

User · Answer

I m using PHP and solved this by using version 1 1 4 of google-api-php-client  Assuming the following code is used to redirect a user to the Google authentication page     client   new Google Client      client- gt setAuthConfigFile   path to config file here      client- gt setRedirectUri  https   redirect url here      client- gt setAccessType  offline      optional   client- gt setScopes   profile       or email   auth url    client- gt createAuthUrl     header  Location      filter var  auth url  FILTER SANITIZE URL     exit      Assuming a valid authentication code is returned to the redirect url  the following will generate a token from the authentication code as well as provide basic profile information      assuming a successful authentication code is return   authentication code    code-returned-by-google     client   new Google Client            configure  client object code goes here   client- gt authenticate  authentication code     token data    client- gt getAccessToken        get user email address   google oauth  new Google Service Oauth2  client     google account email    google oauth- gt userinfo- gt get  - gt email      google oauth- gt userinfo- gt get  - gt familyName      google oauth- gt userinfo- gt get  - gt givenName      google oauth- gt userinfo- gt get  - gt name      google oauth- gt userinfo- gt get  - gt gender      google oauth- gt userinfo- gt get  - gt picture    profile picture   However  location is not returned  New YouTube accounts don t have YouTube specific usernames

User · Answer

I am using Google API for  Net  but no doubt you can find the same way to obtain this information using other version of API  As user872858 mentioned  scope userinfo profile has been deprecated  google article     To obtain user profile info I use following code  re-written part from google s example    IAuthorizationCodeFlow flow   new GoogleAuthorizationCodeFlow                                    new GoogleAuthorizationCodeFlow Initializer                                                                                     ClientSecrets   Secrets                                              Scopes   new     PlusService Scope PlusLogin  https   www googleapis com auth plus profile emails read                                                    TokenResponse  token   flow ExchangeCodeForTokenAsync     code   postmessage                                  CancellationToken None  Result                          Create an authorization state from the returned token                      context Session  authState      token                          Get tokeninfo for the access token if you want to verify                      Oauth2Service service   new Oauth2Service                       new Google Apis Services BaseClientService Initializer                         Oauth2Service TokeninfoRequest request   service Tokeninfo                        request AccessToken    token AccessToken                      Tokeninfo info   request Execute                        if  info VerifiedEmail HasValue  amp  amp  info VerifiedEmail Value                                                flow   new GoogleAuthorizationCodeFlow                                      new GoogleAuthorizationCodeFlow Initializer                                                                                         ClientSecrets   Secrets                                               Scopes   new     PlusService Scope PlusLogin                                                                          UserCredential credential   new UserCredential flow                                                                  me    token                            token   credential Token                           ps   new PlusService                                new Google Apis Services BaseClientService Initializer                                                                       ApplicationName    Your app name                                      HttpClientInitializer   credential                                                            Person userProfile    ps People Get  me   Execute                            Than  you can access almost anything using userProfile   UPDATE  To get this code working you have to use appropriate scopes on google sign in button  For example my button         lt button class  g-signin               data-scope  https   www googleapis com auth plus login https   www googleapis com auth plus profile emails read               data-clientid  646361778467-nb2uipj05c4adlk0vo66k96bv8inqles apps googleusercontent com               data-accesstype  offline               data-redirecturi  postmessage               data-theme  dark               data-callback  onSignInCallback               data-cookiepolicy  single host origin               data-width  iconOnly  gt        lt  button gt

[oauth] Get user info via Google API

Examples related to oauth

Examples related to google-api

Examples related to userinfo