google-auto-auth
Making it as easy as possible to authenticate a Google API request
$ npm install --save google-auto-auth
var googleAuth = require('google-auto-auth');
var auth = googleAuth();
auth.authorizeRequest({
method: 'get',
uri: 'https://www.googleapis.com/something'
}, function (err, authorizedReqOpts) {
});
Or, just get an access token.
auth.getToken(function (err, token) {
});
This works automatically if:
- your app runs on Google Compute Engine
- you are authenticated with the
gcloud
sdk - you have the path to a JSON key file as an environment variable named
GOOGLE_APPLICATION_CREDENTIALS
If you do not meet those, you must provide a keyFile or credentials object.
var googleAuth = require('google-auto-auth');
var authConfig = {};
authConfig.keyFilename = '/path/to/keyfile.json';
authConfig.credentials = {
client_email: '...',
private_key: '...'
};
var auth = googleAuth(authConfig);
auth.authorizeRequest({}, function (err, authorizedReqOpts) {});
auth.getToken(function (err, token) {});
API
googleAuth = require('google-auto-auth')
auth = googleAuth([authConfig])
authConfig
See the above section on Authentication. This object is necessary if automatic authentication is not available in your environment.
Everything from the gcloud-node Authentication Guide applies here.
At a glance, the supported properties for this method are:
keyFilename
- Path to a .json, .pem, or .p12 key filecredentials
- Object containing client_email
and private_key
propertiesscopes
- Required scopes for the desired API request
For more details, see the Authentication Guide linked above, under "The config object".
auth.authorizeRequest(reqOpts, callback)
Extend an HTTP request object with an authorized header.
callback(err, authorizedReqOpts)
callback.err
An API error or an error if scopes are required for the request you're trying to make (check for err.code = MISSING_SCOPE
). If you receive the missing scope error, provide the authConfig.scopes
array with the necessary scope URLs for your request. There are examples of scopes that are required for some of the Google Cloud Platform services in the gcloud-node Authentication Guide.
callback.authorizedReqOpts
The reqOpts object provided has been extended with a valid access token attached to the headers.Authorization
value. E.g.: headers.Authorization = 'Bearer y.2343...'
.
auth.getAuthClient(callback)
Get the auth client instance from google-auth-library.
callback(err, authClient)
callback.err
An error that occurred while trying to get an authorization client.
callback.authClient
The client instance from google-auth-library. This is the underlying object this library uses.
auth.getCredentials(callback)
Get the client_email
and private_key
properties from an authorized client.
callback(err, credentials)
callback.err
An error that occurred while trying to get an authorization client.
callback.credentials
An object containing client_email
and private_key
.
auth.getProjectId(callback)
Get the project ID if it was auto-detected or parsed from the provided keyfile.
callback(err, projectId)
callback.err
An error that occurred while trying to get an authorization client.
callback.projectId
The project ID that was parsed from the provided keyfile or auto-detected from the environment.
auth.getToken(callback)
Get an access token. The token will always be current. If necessary, background refreshes are handled automatically.
callback(err, token)
callback.err
An API error or an error if scopes are required for the request you're trying to make (check for err.code = MISSING_SCOPE
). If you receive the missing scope error, provide the authConfig.scopes
array with the necessary scope URLs for your request. There are examples of scopes that are required for some of the Google Cloud Platform services in the gcloud-node Authentication Guide.
callback.token
A current access token to be used during an API request.