Hello Josh, Any info found? Should I go ahead with this change across my application?
Thanks, On Friday, 21 October 2016 02:12:21 UTC+5:30, Josh Radcliff (AdWords API Team) wrote: > > Hi, > > Sorry, I could have sworn that this worked for me when I did it yesterday, > but when I tried again today I saw the behavior you described. > > I searched a bit and found that the Google OAuth2 documentation now *only* > lists > the *prompt* parameter > <https://developers.google.com/identity/protocols/OpenIDConnect#prompt> > -- *approval_prompt* no longer appears. I'm still digging to find out why > and when this change occurred, but in the meantime it seems that switching > to *prompt=consent* in place of *approval_prompt=force* should fix this > for you. > > Thanks, > Josh, AdWords API Team > > On Thursday, October 20, 2016 at 1:24:57 AM UTC-4, cv wrote: >> >> Hello Josh, >> >> Yes you are right, approval_prompt = force is working fine when you are >> allowing app for the first time and not logged out from your login before >> expires_in time. >> >> It was not worked in following case >> >> Step 1 : Allow user to authorised your app which may have url >> >> >> https://accounts.google.com/o/oauth2/v2/auth?redirect_uri=https%3A%2F%2Fdevelopers.google.com%2Foauthplayground&approval_prompt=force&response_type=code&client_id=XXXXX.apps.googleusercontent.com&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fadwords&access_type=offline >> >> Allow This will redirect to consent screen, >> >> >> Step 2: Now user has approved your app from consent screen from step 1 >> >> The response is access token and refreshtoken >> >> { >> >> "access_token": "yXXXXX_A", >> >> "token_type": "Bearer", >> >> "expires_in": 3600, >> >> "refresh_token": "1XXXXXFw" >> >> } >> >> >> Step 3 : User tries to link his another adwords account to same app but >> he has not logged out from his adwords account which was approved from step >> 2, Now url will be same as step 1 as it is same app and user click on >> *Authorize >> API *button >> >> >> https://accounts.google.com/o/oauth2/v2/auth?redirect_uri=https%3A%2F%2Fdevelopers.google.com%2Foauthplayground&approval_prompt=force&response_type=code&client_id=XXXXX.apps.googleusercontent.com&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fadwords&access_type=offline >> >> In this case user will not be see consent screen and simply response >> without refreshtoken >> >> { >> >> "access_token": "yaXXXXXUg", >> >> "token_type": "Bearer", >> >> "expires_in": 3593 >> >> } >> >> >> Thanks, >> >> >> >> On Thursday, 20 October 2016 02:41:11 UTC+5:30, Josh Radcliff (AdWords >> API Team) wrote: >>> >>> Hi, >>> >>> That's true, but you can still use *approval_prompt=force* and it will >>> behave as expected, even with the OAuth playground. >>> >>> To see this, select *Force prompt: Consent screen *in the playground, >>> then click the *Authorize APIs *button. The URL in the resulting >>> consent screen will look something like this: >>> >>> >>> https://accounts.google.com/o/oauth2/auth?redirect_uri=https%3A%2F%2Fdevelopers.google.com%2Foauthplayground&; >>> *prompt=consent*&response_type=code&client_id=*XXXXXX.apps.googleusercontent.com >>> >>> <http://XXXXXX.apps.googleusercontent.com>*&scope=https%3A%2F% >>> 2Fwww.googleapis.com%2Fauth%2Fadwords&access_type=offline >>> >>> If you change that URL to use *approval_prompt=force*, you'll see that >>> you will always get the consent screen. >>> >>> >>> https://accounts.google.com/o/oauth2/auth?redirect_uri=https%3A%2F%2Fdevelopers.google.com%2Foauthplayground&; >>> *approval_prompt=force*&response_type=code&client_id=*XXXXXX.apps.googleusercontent.com >>> >>> <http://XXXXXX.apps.googleusercontent.com>*&scope=https%3A%2F% >>> 2Fwww.googleapis.com%2Fauth%2Fadwords&access_type=offline >>> >>> Thanks, >>> Josh, AdWords API Team >>> >>> On Wednesday, October 19, 2016 at 2:52:26 PM UTC-4, cv wrote: >>>> >>>> Hello Josh, >>>> >>>> I just noticed that there is no approval_prompt under in the OAuth >>>> Playground <https://developers.google.com/oauthplayground>, >>>> Instead it is *prompt=consent* or *prompt=select_account* or it can be >>>> *prompt=none* >>>> >>>> So I guess Now *approval_prompt = Auto / Force* is deprecated.. >>>> >>>> Please provide your input on this. >>>> >>>> *prompt=consent is working as a **approval_prompt = Force* >>>> >>>> Thanks, >>>> >>>> >>>> On Wednesday, 19 October 2016 23:18:33 UTC+5:30, cv wrote: >>>>> >>>>> Hello Josh, >>>>> >>>>> I will try with older version again and inform owner with library to >>>>> look into it. >>>>> >>>>> Thanks, >>>>> >>>>> >>>>> On Wednesday, 19 October 2016 19:02:42 UTC+5:30, Josh Radcliff >>>>> (AdWords API Team) wrote: >>>>>> >>>>>> Hi, >>>>>> >>>>>> Thanks for confirming you're passing the correct *offline* value. >>>>>> >>>>>> This is looking like a client library issue. I just experimented with >>>>>> the *approval_prompt* in the OAuth Playground >>>>>> <https://developers.google.com/oauthplayground>, and it seems to be >>>>>> behaving properly. >>>>>> >>>>>> Have you recently tried it again with v10.0.0 of the client library >>>>>> and confirmed it still works with that version? If so, please open an >>>>>> issue >>>>>> in the PHP client library on this page >>>>>> <https://github.com/googleads/googleads-php-lib/issues>, and the >>>>>> client library owner will respond. >>>>>> >>>>>> Thanks, >>>>>> Josh, AdWords API Team >>>>>> >>>>>> On Wednesday, October 19, 2016 at 12:56:06 AM UTC-4, cv wrote: >>>>>>> >>>>>>> Hello Josh, >>>>>>> >>>>>>> Yes, I am passing offline to true. >>>>>>> >>>>>>> My main concern is approval prompt is not prompting users to >>>>>>> authorised app forcefully. >>>>>>> >>>>>>> Please check this thread for more info : >>>>>>> https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!topic/adwords-api/GTClxukrLCE >>>>>>> >>>>>>> It was working fine prior to client library v13.1.0 >>>>>>> I was using v10.0.0. >>>>>>> >>>>>>> My code : >>>>>>> $offline = TRUE; >>>>>>> $extra_para = array(); >>>>>>> $extra_para['approval_prompt'] = 'force'; >>>>>>> $extra_para['state'] = 'info_page'; >>>>>>> >>>>>>> >>>>>>> $OAuth2Handler = $user->GetOAuth2Handler(); >>>>>>> $authorizationUrl = >>>>>>> $OAuth2Handler->GetAuthorizationUrl($user->GetOAuth2Info(), >>>>>>> $redirectUri, >>>>>>> $offline, $extra_para); >>>>>>> >>>>>>> Thanks, >>>>>>> >>>>>>> >>>>>>> On Tuesday, 18 October 2016 19:57:24 UTC+5:30, Josh Radcliff >>>>>>> (AdWords API Team) wrote: >>>>>>>> >>>>>>>> Hi, >>>>>>>> >>>>>>>> When you get the authorization URL, do you pass *true* for the >>>>>>>> *offline* argument, as shown in the GetRefreshToken.php example >>>>>>>> <https://github.com/googleads/googleads-php-lib/blob/master/examples/AdWords/Auth/GetRefreshToken.php#L46> >>>>>>>> ? >>>>>>>> >>>>>>>> Without that argument set to true, you'll only be given back an >>>>>>>> *access >>>>>>>> token*. >>>>>>>> >>>>>>>> Thanks, >>>>>>>> Josh, AdWords API Team >>>>>>>> >>>>>>>> On Tuesday, October 18, 2016 at 2:29:55 AM UTC-4, cv wrote: >>>>>>>>> >>>>>>>>> Hello All, >>>>>>>>> >>>>>>>>> >>>>>>>>> The 'approval_prompt' => 'force' argument with oauth callback url >>>>>>>>> is not working as expected. >>>>>>>>> If I pass the 'approval_prompt' => 'force', it is not asking user >>>>>>>>> to authorise app forcefully If I had login with already authorized >>>>>>>>> adwords >>>>>>>>> account. >>>>>>>>> >>>>>>>>> Also It is not returning refresh_token with $user->GetOAuth2Info() >>>>>>>>> under below code. >>>>>>>>> >>>>>>>>> $OAuth2Handler = $user->GetOAuth2Handler(); >>>>>>>>> >>>>>>>>> $user->SetOAuth2Info($OAuth2Handler->GetAccessToken($user->GetOAuth2Info(), >>>>>>>>> >>>>>>>>> $code, $redirectUri)); >>>>>>>>> $user->GetOAuth2Info(); >>>>>>>>> >>>>>>>>> Thanks, >>>>>>>>> >>>>>>>> -- -- =~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~ Also find us on our blog and Google+: https://googleadsdeveloper.blogspot.com/ https://plus.google.com/+GoogleAdsDevelopers/posts =~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~ You received this message because you are subscribed to the Google Groups "AdWords API Forum" group. To post to this group, send email to adwords-api@googlegroups.com To unsubscribe from this group, send email to adwords-api+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/adwords-api?hl=en --- You received this message because you are subscribed to the Google Groups "AdWords API Forum" group. To unsubscribe from this group and stop receiving emails from it, send an email to adwords-api+unsubscr...@googlegroups.com. Visit this group at https://groups.google.com/group/adwords-api. To view this discussion on the web visit https://groups.google.com/d/msgid/adwords-api/7d50b70c-9ea0-4569-a459-66aef29743d7%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
