Google Analytics OAuth2：如何解决错误：“ redirect_uri_mismatch”？

Question

我正在尝试使该示例工作：https : //developers.google.com/analytics/devguides/config/mgmt/v3/quickstart/web-php#enable

我收到的错误是“错误：redirect_uri_mismatch”。

为了安装google api资源，我在以下命令中使用了composer：

php composer.phar require google/apiclient:^2.0.0@RC

这将“ vendor”文件夹安装在我的根站点文件夹中。我的index.php和oauth2callback.php文件位于“ public_html”文件夹中。

这是我进入网站时出现的错误的屏幕截图：

奇怪的是，如果我导航到错误消息“访问......以更新授权的..”中包含的以上链接，则会收到以下错误消息：“ OAuth客户端不存在”

如果单击我唯一可用的客户端ID，则可以导航以查看URI，我还将在下面截屏：

如您所见，在“授权Javascript起源”下，我列出了http：// localhost，在“授权重定向URI”下，我的活动站点后面是“ oauthc2callback.php”文件扩展名。

我不明白如何摆脱我得到的错误。我尝试过替换URI并放入不同的JavaScript来源。

另外，由于最后一个屏幕截图的某种原因，它表示我没有编辑此OAuth客户端的权限，但是我可以进行编辑。

我为index.php提供的代码：

<?php
// Load the Google API PHP Client Library.
require_once '../vendor/autoload.php';

// Start a session to persist credentials.
session_start();

// Create the client object and set the authorization configuration
// from the client_secretes.json you downloaded from the developer console.
$client = new Google_Client();
$client->setAuthConfigFile('../config/client_secrets.json');
$client->addScope('https://www.googleapis.com/auth/analytics.readonly');

// If the user has already authorized this app then get an access token
// else redirect to ask the user to authorize access to Google Analytics.
if (isset($_SESSION['access_token']) && $_SESSION['access_token']) {
    // Set the access token on the client.
    $client->setAccessToken($_SESSION['access_token']);

    // Create an authorized analytics service object.
    $analytics = new Google_Service_Analytics($client);

    // Get the first view (profile) id for the authorized user.
    $profile = getFirstProfileId($analytics);

    // Get the results from the Core Reporting API and print the results.
    $results = getResults($analytics, $profile);
    printResults($results);
} else {
    $redirect_uri = 'http://' . $_SERVER['HTTP_HOST'] . '/oauth2callback.php';
    header('Location: ' . filter_var($redirect_uri, FILTER_SANITIZE_URL));
}


function getFirstprofileId(&$analytics) {
    // Get the user's first view (profile) ID.

    // Get the list of accounts for the authorized user.
    $accounts = $analytics->management_accounts->listManagementAccounts();

    if (count($accounts->getItems()) > 0) {
        $items = $accounts->getItems();
        $firstAccountId = $items[0]->getId();

        // Get the list of properties for the authorized user.
        $properties = $analytics->management_webproperties
        ->listManagementWebproperties($firstAccountId);

        if (count($properties->getItems()) > 0) {
            $items = $properties->getItems();
            $firstPropertyId = $items[0]->getId();

            // Get the list of views (profiles) for the authorized user.
            $profiles = $analytics->management_profiles
            ->listManagementProfiles($firstAccountId, $firstPropertyId);

            if (count($profiles->getItems()) > 0) {
                $items = $profiles->getItems();

                // Return the first view (profile) ID.
                return $items[0]->getId();

            } else {
                throw new Exception('No views (profiles) found for this user.');
            }
        } else {
            throw new Exception('No properties found for this user.');
        }
    } else {
        throw new Exception('No accounts found for this user.');
    }
}

function getResults(&$analytics, $profileId) {
    // Calls the Core Reporting API and queries for the number of sessions
    // for the last seven days.
    return $analytics->data_ga->get(
    'ga:' . $profileId,
    '7daysAgo',
    'today',
    'ga:sessions');
}

function printResults(&$results) {
    // Parses the response from the Core Reporting API and prints
    // the profile name and total sessions.
    if (count($results->getRows()) > 0) {

        // Get the profile name.
        $profileName = $results->getProfileInfo()->getProfileName();

        // Get the entry for the first entry in the first row.
        $rows = $results->getRows();
        $sessions = $rows[0][0];

        // Print the results.
        print "<p>First view (profile) found: $profileName</p>";
        print "<p>Total sessions: $sessions</p>";
    } else {
        print "<p>No results found.</p>";
    }
}

我为“ oauth2callback.php”编写的代码：

<?php
require_once '../vendor/autoload.php';

// Start a session to persist credentials.
session_start();

// Create the client object and set the authorization configuration
// from the client_secrets.json you downloaded from the Developers Console.
$client = new Google_Client();
$client->setAuthConfigFile('../config/client_secrets.json');
$client->setRedirectUri('http://' . $_SERVER['HTTP_HOST'] . '/oauth2callback.php');
$client->addScope('https://www.googleapis.com/auth/analytics.readonly');

// Handle authorization flow from the server.
if (! isset($_GET['code'])) {
    $auth_url = $client->createAuthUrl();
    header('Location: ' . filter_var($auth_url, FILTER_SANITIZE_URL));
} else {
    $client->authenticate($_GET['code']);
    $_SESSION['access_token'] = $client->getAccessToken();
    $redirect_uri = 'http://' . $_SERVER['HTTP_HOST'] . '/';
    header('Location: ' . filter_var($redirect_uri, FILTER_SANITIZE_URL));
}

所有这些代码均摘自第一个网站示例，除了一些小的补充使其与我的系统匹配。

有人知道如何摆脱这个错误吗？我究竟做错了什么？

Answer 1

请记住，就Google而言，“您的”服务器是敌对的，直到您将其命名为“友好的”为止，您必须明确将对OAuth调用Google的所有可能来源列入白名单。

Google是夜总会的会员，是一个庞大，丑陋，无法移动的保镖，其中有一个来宾列表，它对您的应用说：“如果您的确切姓名或ID在列表中，我只会处理您的请求”

您是否尝试过不仅包括，还包括localhost所有其他可能的来源？

您必须列出url“ root”的所有可能变体，包括显式IP。

http://www.example.com
http://example.com
https://example.com
https://www.example.com
http://222.111.0.111
...

不要忘记包括

https://accounts.google.com:443