I want to make JSON-RPC calls from localhost (WAMP environment) to the Google FusionTables API (and a couple of other APIs) using the Google Client Library for JavaScript
Steps I have taken:
- setup a project on the Google Developer Console
- enabled the FusionTables API
- created a service account and downloaded the JSON file.
- successfully loaded the JS client library with the auth package:
gapi.load('client:auth2', initAuth); - constructed the init method parameter the following 3 ways:
- the downloaded JSON verbatim
- the downloaded JSON modified to include the scope
- just the client ID and scope
- tried (and failed) to initialize the GoogleAuth instance:
gapi.auth2.init(params)
function failed(reason) {
console.log(reason);
}
gapi.load('client:auth2', initAuth);
function initAuth() {
var APIkey = 'MY API KEY';
gapi.client.setApiKey(APIkey); //I understand this to be unnecessary with authorized requests, included just for good measure
var GDTSAKey = 'MY SERVICE ACCOUNT KEY';
var scopes = '';
gapi.auth2.init({
client_id: "101397488004556049686",
scope: ''
}).then(signin, failed("couldn't initiate"));
//passing the downlaoded JSON object verbatim as parameter to init didn't work either
} //initAuth()
function signin() {
gapi.auth2.getAuthInstance().signIn().then(makeAPIcall), failed("couldn't sign-in");
}
function makeAPIcall(){
gapi.client.load('fusiontables', 'v2', function(){
var tableId = '1PSI_...';
var table = gapi.client.fusiontables.table.get(tableId);
document.querySelector("#result").innerHTML = table;
});
}
based on JS client library >> Samples
the gapi.auth2.init method invokes the second callback (which I understand to be an error handler): failed("couldn't initiate"), but then, curiously, I also get `couldn't sign in' which could only have originated from within the provided success handler. What's going on? How do I get this to work?
Note: I am only willing to try the CORS/xhr, if there is no way to do it with JS client lib.
I want to make JSON-RPC calls from localhost (WAMP environment) to the Google FusionTables API (and a couple of other APIs) using the Google Client Library for JavaScript
Steps I have taken:
- setup a project on the Google Developer Console
- enabled the FusionTables API
- created a service account and downloaded the JSON file.
- successfully loaded the JS client library with the auth package:
gapi.load('client:auth2', initAuth); - constructed the init method parameter the following 3 ways:
- the downloaded JSON verbatim
- the downloaded JSON modified to include the scope
- just the client ID and scope
- tried (and failed) to initialize the GoogleAuth instance:
gapi.auth2.init(params)
function failed(reason) {
console.log(reason);
}
gapi.load('client:auth2', initAuth);
function initAuth() {
var APIkey = 'MY API KEY';
gapi.client.setApiKey(APIkey); //I understand this to be unnecessary with authorized requests, included just for good measure
var GDTSAKey = 'MY SERVICE ACCOUNT KEY';
var scopes = 'https://www.googleapis./auth/fusiontables';
gapi.auth2.init({
client_id: "101397488004556049686",
scope: 'https://www.googleapis./auth/fusiontables'
}).then(signin, failed("couldn't initiate"));
//passing the downlaoded JSON object verbatim as parameter to init didn't work either
} //initAuth()
function signin() {
gapi.auth2.getAuthInstance().signIn().then(makeAPIcall), failed("couldn't sign-in");
}
function makeAPIcall(){
gapi.client.load('fusiontables', 'v2', function(){
var tableId = '1PSI_...';
var table = gapi.client.fusiontables.table.get(tableId);
document.querySelector("#result").innerHTML = table;
});
}
based on JS client library >> Samples
the gapi.auth2.init method invokes the second callback (which I understand to be an error handler): failed("couldn't initiate"), but then, curiously, I also get `couldn't sign in' which could only have originated from within the provided success handler. What's going on? How do I get this to work?
Note: I am only willing to try the CORS/xhr, if there is no way to do it with JS client lib.
Share Improve this question edited Oct 3, 2016 at 6:27 Linda Lawton - DaImTo 117k39 gold badges224 silver badges499 bronze badges asked Oct 3, 2016 at 6:24 Ehsan AminiEhsan Amini 1692 silver badges13 bronze badges 8- Where in the documentation of the Google JavaScript client library does it say it supports service accounts? All I see is public API and Oauth2. – Linda Lawton - DaImTo Commented Oct 3, 2016 at 6:27
- I don't remember having seen it explicitly. But then, I didn't read anywhere that it didn't, so I just assumed it does; real pity that it doesn't. – Ehsan Amini Commented Oct 3, 2016 at 12:14
- If something is supported the documentation will state that and show you how to use it. Otherwise we will have to have documentation that clearly states it does not help you to make a pizza, cook hotdogs, ... or everything else in the world that It wouldn't support. – Linda Lawton - DaImTo Commented Oct 3, 2016 at 12:33
- 1 My assumption was based on the remendation on this page: OAuth 2.0 for Service Accounts. One wouldn't reasonably expect a client library to directly help you make pizza or cook hotdogs. But expecting a Google API client library to be patible with all account types by Google isn't too far-fetched I suppose and very natural to assume unless it is explicitly excluded. While it's a great piece of work and much appreciated, the documentation is ambiguous if not outright misleading. – Ehsan Amini Commented Oct 3, 2016 at 14:29
- Consider that js is client sided then consider the security ramifications of having the service account info in the file for everyone to see and download. Service accounts and js don't mix. Google isn't going to help you do something that would be a security nightmare – Linda Lawton - DaImTo Commented Oct 3, 2016 at 14:45
1 Answer
Reset to default 10What's going on?
You are trying to use a service account with the Google JavaScript client library which does not support service accounts.
How do I get this to work?
Switch to Oauth2 authentication or if you must use a service account switch to a server sided language like PHP or python for example. Which support service account authentication.