Varation onUserAuthorizer adapted for Rack basedweb applications.

Example usage:

get('/') do  user_id = request.session['user_email']  credentials = authorizer.get_credentials(user_id, request)  if credentials.nil?    redirect authorizer.get_authorization_url(user_id: user_id,                                              request: request)  end  # Credentials are valid, can call APIs  ...

end

get('/oauth2callback') do url = Google::Auth::WebUserAuthorizer.handle_auth_callback_deferred( request) redirect url end

Instead of implementing the callback directly, applications areencouraged to useCallbackApp instead.

Inherits

• Google::Auth::UserAuthorizer

Returns the value of attribute default.

Sets the attribute default

Handle the result of the oauth callback. This version defers theexchange of the code by temporarily stashing the results in the user'ssession. This allows apps to use the genericCallbackApp handler for the callbackwithout any additional customization.

Apps that wish to handle the callback directly should use#handle_auth_callback instead.

• request (Rack::Request) — Current request

Verifies the results of an authorization callback

• state (Hash) — Callback state
• request (Rack::Request) — Current request

• (Signet::AuthorizationError)

Build the URL for requesting authorization.

• login_hint (String) — Login hint if need to authorize a specific account. Should be auser's email address or unique profile ID.
• request (Rack::Request) — Current request
• redirect_to (String) — Optional URL to proceed to after authorization complete. Defaults tothe current URL.
• scope (String, Array<String>) — Authorization scope to request. Overrides the instance scopes ifnot nil.
• state (Hash) — Optional key-values to be returned to the oauth callback.

• (String) — Authorization url

• (NIL_REQUEST_ERROR)

Fetch stored credentials for the user from the given request session.

• user_id (String) — Unique ID of the user for loading/storing credentials.
• request (Rack::Request) — Current request. Optional. If omitted, this will attempt to fall backon the base class behavior of reading from the token store.
• scope (Array<String>, String) — If specified, only returns credentials that have all the \requested scopes

• (Google::Auth::UserRefreshCredentials) — Stored credentials, nil if none present

• (Signet::AuthorizationError) — May raise an error if an authorization code is present in the sessionand exchange of the code fails

Handle the result of the oauth callback. Exchanges the authorizationcode from the request and persists to storage.

• user_id (String) — Unique ID of the user for loading/storing credentials.
• request (Rack::Request) — Current request

• (Google::Auth::UserRefreshCredentials, String) — credentials & next URL to redirect to

Initialize the authorizer

• client_id (Google::Auth::ClientID) — Configured ID & secret for this application
• scope (String, Array<String>) — Authorization scope to request
• token_store (Google::Auth::Stores::TokenStore) — Backing storage for persisting user credentials
• legacy_callback_uri (String) — URL (either absolute or relative) of the auth callback. Defaultsto '/oauth2callback'.@deprecated This field is deprecated. Instead, use the keyword argument callback_uri.
• code_verifier (String)(defaults to: nil) — Random string of 43-128 chars used to verify the key exchange usingPKCE.

• (WebUserAuthorizer) — a new instance of WebUserAuthorizer

value:"state".freeze

value:"code".freeze

value:"error".freeze

value:"session_id".freeze

value:"g-auth-callback".freeze

value:"current_uri".freeze

value:"g-xsrf-token".freeze

value:"scope".freeze

value:"Request is required.".freeze

value:"Sessions must be enabled".freeze

value:"Missing authorization code in request".freeze

value:"Authorization error: %s".freeze

value:"State token does not match expected value".freeze