blob: a62b4e13300bea32025fdb7722acccabe405ace9 [file] [log] [blame]
// Copyright 2021 The Go Authors. All rights reserved.
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file.
package authhandler_test
import (
// CmdAuthorizationHandler returns a command line auth handler that prints
// the auth URL to the console and prompts the user to authorize in the
// browser and paste the auth code back via stdin.
// Per the OAuth protocol, a unique "state" string should be specified here.
// The authhandler token source will verify that the "state" is identical in
// the request and response before exchanging the auth code for OAuth token to
// prevent CSRF attacks.
// For convenience, this handler returns a pre-configured state instead of
// asking the user to additionally paste the state from the auth response.
// In order for this to work, the state configured here must match the state
// used in authCodeURL.
func CmdAuthorizationHandler(state string) authhandler.AuthorizationHandler {
return func(authCodeURL string) (string, string, error) {
fmt.Printf("Go to the following link in your browser:\n\n %s\n\n", authCodeURL)
fmt.Println("Enter authorization code:")
var code string
return code, state, nil
func Example() {
ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
w.Header().Set("Content-Type", "application/json")
"access_token": "90d64460d14870c08c81352a05dedd3465940a7c",
"scope": "pubsub",
"token_type": "bearer",
"expires_in": 3600
defer ts.Close()
ctx := context.Background()
conf := &oauth2.Config{
ClientID: "testClientID",
Scopes: []string{"pubsub"},
Endpoint: oauth2.Endpoint{
AuthURL: "testAuthCodeURL",
TokenURL: ts.URL,
state := "unique_state"
token, err := authhandler.TokenSource(ctx, conf, state, CmdAuthorizationHandler(state)).Token()
if err != nil {
fmt.Printf("AccessToken: %s", token.AccessToken)
// Output:
// Go to the following link in your browser:
// testAuthCodeURL?client_id=testClientID&response_type=code&scope=pubsub&state=unique_state
// Enter authorization code:
// AccessToken: 90d64460d14870c08c81352a05dedd3465940a7c