1. 首页
  2. 问答
  3. 使用oauth令牌连接到使用imap的Gmail时身份验证失败

使用oauth令牌连接到使用imap的Gmail时身份验证失败

2016-11-16 128 views
4

我正在编写使用Google身份验证登录的脚本。我目前正在获取访问令牌和用户的电子邮件地址,并将其传递给我使用imap连接到gmail的函数,然后使用电子邮件执行一些操作。我生成了身份验证字符串,就像我见过别人做网上但是我收到此错误:使用oauth令牌连接到使用imap的Gmail时身份验证失败

Traceback (most recent call last): 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 2000, in __call__ 
    return self.wsgi_app(environ, start_response) 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1991, in wsgi_app 
    response = self.make_response(self.handle_exception(e)) 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1567, in handle_exception 
    reraise(exc_type, exc_value, tb) 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1988, in wsgi_app 
    response = self.full_dispatch_request() 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1641, in full_dispatch_request 
    rv = self.handle_user_exception(e) 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1544, in handle_user_exception 
    reraise(exc_type, exc_value, tb) 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1639, in full_dispatch_request 
    rv = self.dispatch_request() 
    File "/Library/Python/2.7/site-packages/flask/app.py", line 1625, in dispatch_request 
    return self.view_functions[rule.endpoint](**req.view_args) 
    File "/Users/Harrison/Desktop/Uber/UberStats.py", line 60, in index 
    return Uber_Cost(email_address, access_token) 
    File "/Users/Harrison/Desktop/Uber/UberStats.py", line 103, in Uber_Cost 
    mail.authenticate('XOAUTH2', lambda x: auth_string) 
    File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/imaplib.py", line 364, in authenticate 
    raise self.error(dat[-1]) 
error: [AUTHENTICATIONFAILED] Invalid credentials (Failure)

我打印出的访问代码,以及为我与登录的电子邮件地址,所以我知道这些值不为空。我是否生成auth字符串错误?我没有正确验证imap吗?

这里是我的代码:

from flask import Flask, request, url_for, session, redirect, jsonify 
from flask_oauth import OAuth 
import json 
import imaplib 
import email 
from bs4 import BeautifulSoup 
import base64 





GOOGLE_CLIENT_ID = '****' 
GOOGLE_CLIENT_SECRET = '***' 
REDIRECT_URI = '/authorized' # one of the Redirect URIs from Google APIs console 

SECRET_KEY = 'Uber' 
DEBUG = True 

app = Flask(__name__) 
app.secret_key = 'Uber' 
oauth = OAuth() 

google = oauth.remote_app('google', 
          base_url='https://www.google.com/accounts/', 
          authorize_url='https://accounts.google.com/o/oauth2/auth', 
          request_token_url=None, 
          request_token_params={'scope': 'https://www.googleapis.com/auth/userinfo.email', 
               'response_type': 'code'}, 
          access_token_url='https://accounts.google.com/o/oauth2/token', 
          access_token_method='POST', 
          access_token_params={'grant_type': 'authorization_code'}, 
          consumer_key=GOOGLE_CLIENT_ID, 
          consumer_secret=GOOGLE_CLIENT_SECRET) 


@app.route('/') 
def index(): 
    access_token = session.get('access_token') 
    if access_token is None: 
     return redirect(url_for('login')) 

    access_token = access_token[0] 
    from urllib2 import Request, urlopen, URLError 

    headers = {'Authorization': 'OAuth '+access_token} 
    req = Request('https://www.googleapis.com/oauth2/v1/userinfo', 
        None, headers) 
    try: 
     res = urlopen(req) 
    except URLError, e: 
     if e.code == 401: 
      # Unauthorized - bad token 
      session.pop('access_token', None) 
      return redirect(url_for('login')) 
     return res.read() 
    j = json.loads(res.read()) 
    email_address = j['email'] 
    print email_address, access_token 
    return Uber_Cost(email_address, access_token) 


@app.route('/login') 
def login(): 
    callback=url_for('authorized', _external=True) 
    return google.authorize(callback=callback) 



@app.route(REDIRECT_URI) 
@google.authorized_handler 
def authorized(resp): 
    access_token = resp['access_token'] 
    session['access_token'] = access_token, '' 
    return redirect(url_for('index')) 


@google.tokengetter 
def get_access_token(): 
    return session.get('access_token') 


def GenerateOAuth2String(username, access_token, base64_encode=True): 
    auth_string = 'user=%s\1auth=Bearer %s\1\1' % (username, access_token) 
    if base64_encode: 
     auth_string = base64.b64encode(auth_string) 
    return auth_string 




def Uber_Cost(email_address, access_token): 


    auth_string = GenerateOAuth2String(email_address, access_token, base64_encode=False) 



    mail = imaplib.IMAP4_SSL('imap.gmail.com') 
    mail.debug = 4 
    mail.authenticate('XOAUTH2', lambda x: auth_string) 
    mail.select('INBOX')

来源

2016-11-16 Harrison

+0

你应该看看这个答案:http://stackoverflow.com/a/5366380/7090605 –

+0

@JakeConway这是oauth2。我不认为oauth 1拥有用户秘密令牌。我怎么得到这个? – Harrison

+0

它看起来像你有Oauth2令牌。你需要一个access_token来连接。 – Max

回答

0

它看起来就像你根据你最新的代码获得了身份验证()方法了。

您还需要使用https://mail.google.com/ OAuth范围才能对IMAP和SMTP服务器进行身份验证。

也就是说它添加到你的范围要求,并确保您的应用程序配置为在谷歌应用程序控制台此范围:

request_token_params={'scope': 'https://www.googleapis.com/auth/userinfo.email https://mail.google.com/', 
              'response_type': 'code'},

的谷歌的OAuth2协议和范围在其developer page被记录在案。

来源

2016-11-17 21:57:58 Max

+0

代码更新为我目前拥有的。那去哪里?在请求令牌参数中? – Harrison

+0

是的,我相信示波器是空间分离的。我不确定,但您可能还需要转到您的应用程序控制台并将其添加到您的项目中。 – Max

+0

顺便说一句,如果您更改范围,您可能需要刷新您拥有的任何当前令牌。 – Max

相关问题

 相关问题