Ok I sent a request with the following setup:

   $.ajax({
      url: 
"https://www-opensocial.googleusercontent.com/api/people/@me/@all";,
      dataType: 'jsonp',
      data: { access_token: token, alt: 'json-in-script' },
      beforeSend: function (xhr) {
        xhr.setRequestHeader("Authorization", "OAuth " + token);
      },
      success: function (data, status) {
        console.log("The returned data", data);
      }
   });

That got me the same 403 Response.

Here is the request/response from Dev Tools below. One possible weird thing 
about it I guess is the "_=" parameter in the request. I don't know where 
that it coming from? Should I be able to see the "Authorization: OAuth..." 
header in this somewhere or is this evidence that it is not being set? Am I 
even correct in thinking I need to include that?


   1. Request URL:
   
   
https://www-opensocial.googleusercontent.com/api/people/@me/@all?callback=jQuery16205001084392424673_1316033978274&access_token=ya29.AHES6ZQEq153-seRtlowG_Zo4CuNClMRIEtMn_4y-3SheXmf&alt=json-in-script&_=1316033978291
   2. Request Method:
   GET
   3. Status Code:
   403 The currently logged in user and/or the gadget requesting data, does 
   not have access to people data.
   4. Query String Parametersview URL encoded
      1. callback:
      jQuery16205001084392424673_1316033978274
      2. access_token:
      ya29.AHES6ZQEq153-seRtlowG_Zo4CuNClMRIEtMn_4y-3SheXmf
      3. alt:
      json-in-script
      4. _:
      1316033978291
      5. Response Headersview source
      1. cache-control:
      private, max-age=0
      2. content-encoding:
      gzip
      3. content-length:
      193
      4. content-type:
      text/html; charset=UTF-8
      5. date:
      Wed, 14 Sep 2011 20:59:38 GMT
      6. expires:
      Wed, 14 Sep 2011 20:59:38 GMT
      7. server:
      GSE
      8. status:
      403 The currently logged in user and/or the gadget requesting data, 
      does not have access to people data.
      9. version:
      HTTP/1.1
      10. x-content-type-options:
      nosniff
      11. x-frame-options:
      SAMEORIGIN
      12. x-xss-protection:
      1; mode=block
      

-- 
You received this message because you are subscribed to the Google
Groups "Google Contacts, Shared Contacts and User Profiles APIs" group.
To post to this group, send email to
[email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://code.google.com/apis/contacts/community/forum.html

Reply via email to