Access User's Data
Most modern applications are attached to the web to synchronize data. When synchronizing data, you need to identify who the user is. Chrome Apps come with an identity API that makes it easy to integrate either with Google accounts or with any other service that supports OAuth.
- Built in - Google Authenticiation
- Third Party Authentication (Twitter, Foursquare, etc.)
Warning:
Apps with authentication require the experimental permission in the
manifest.json and, until they came out of experimental state,
they cannot be uploaded to the Chrome Web Store.
If you prefer, you can choose to skip this lab.
Authenticating with Google
We are working on a very easy integration flow for apps that authenticate with Google accounts. However, this flow is not yet available for general use. In the meantime, you may still use the third-party flow described below, even for Google services.
Integrating with a third-party service
Chrome Apps have a dedicated API for lauching the authentication flow to any third-party OAuth2 service, called identity.launchWebAuthFlow. To show how this flow works, we're going to update our sample to import Google Tasks into the Todo list.
Register with the provider
To use a third-party OAuth2 provider, you will first need to register your application with the provider. Each provider has a different way of registering applications, but in general it will be in a section called Developer or API at the provider's website.
Here we are treating Google as a third-party service. Just follow Google's own registration procedure for apps requiring API access below:
- Create a new project in the Google API console.
- Activate the Tasks API on the Services secion.
- Create a new OAuth2.0 client ID on API Access section. Select Web application and leave other fields unchanged.
- Click on Edit settings for the newly created client ID.
- In Authorized Redirect URLs, add
https://<YOURAPP_ID>.chromiumapp.org/, replacing <YOURAPP_ID> with your app ID (this is the app's long alphanumeric ID you can find inchrome://extensions).
Add permissions
Update the AngularJS manifest.json or JavaScript manifest.json to use "experimental" features. Note that we've also requested permission to make XHR requests to the Tasks service URL - for security reasons, you need to request explicit permission in the manifest for every URL you will call via XHR.
{
... ,
"permissions": ["storage", "experimental", "https://www.googleapis.com/tasks/*"]
}
Add Google tasks to the Todo list
Now we are ready to ask user's authorization, so we can connect to the Tasks service and import his tasks into our Todo list. First, we will need to request an access token - which, at the first run will automatically pops up an authentication and authorization window to the user. Once we have this token, we are able to call the Google Tasks API directly.
Since this is time consuming and error prone, you can cheat and copy our JavaScript that handles the authentication to the Google Tasks API from here: Angular gapi_tasks.js and JavaScript gapi_tasks.js are the same. This script calls
launchWebFlowand gets a valid access token for the specified client ID. It also has simple JavaScript methods that, after authenticated, goes to the Tasks API and gets the user's task lists and the corresponding tasks.Note: This script is NOT intented to be used in production - it is just a very simple, limited and definitely not robust piece of code intented to highlight the basic authentication and API calls.
Add a new method to the existing AngularJS controller.js or JavaScript controller.js that, using the methods from the script of the previous step, authenticates the user and imports his Google tasks into the Todo list:
Angular JavaScript $scope.importFromGTasks = function() { var api = new TasksAPI(); var clientId = "<GET_YOURS_AT_https://code.google.com/apis/console>"; api.authenticate(clientId, function() { api.getLists(function(result) { console.log(result); if (!result || !result.items || result.items.length==0) { throw "No task lists available"; } var listId=result.items[0].id; api.getTasks(listId, function(tasks) { console.log(tasks); for (var j=0; j<tasks.items.length; j++) { $scope.$apply(function() { $scope.todos.push({text:tasks.items[j].title, done:tasks.items[j].status!="needsAction"}); }); } }); }); }); }document.getElementById('importGTasks').addEventListener('click', function() { var api = new TasksAPI(); var clientId = "<GET_YOURS_AT_https://code.google.com/apis/console>"; api.authenticate(clientId, function() { api.getLists(function(result) { console.log(result); if (!result || !result.items || result.items.length==0) { throw "No task lists available"; } var listId=result.items[0].id; api.getTasks(listId, function(tasks) { console.log(tasks); for (var j=0; j<tasks.items.length; j++) { model.addTodo(tasks.items[j].title, tasks.items[j].status!='needsAction'); } }); }); }); });Replace the following line in the code above:
var clientId = "<GET_YOURS_AT_https://code.google.com/apis/console>";
with your own project's Client ID that you got from the Google API Console. Should look like this:var clientId = "xxxxxxxxxxxxxx.apps.googleusercontent.com";
Now we just need a button that starts the import process. Update the
index.htmlto includegapi_tasks.jsand add a new button to callimportFromGTasks:Angular JavaScript <script src="gapi_tasks.js"></script> ... <button ng-click="importFromGTasks()">import tasks from GTasks</button><button id="importGTasks">import tasks from GTasks</button> ... <script src="gapi_tasks.js"></script>
Check the results
If you get stuck and want to see the app in action,
go to chrome://extensions,
load the unpacked
AngularJS app or
JavaScript app,
and launch the app from a new tab.
You should also read
Identify User tutorial
What's next?
In 7 - Access Web Resources, you will learn how to load and show images from a remote URL.
Note: Up until now, the code in each lab builds upon the previous lab code sample.
We've decided not to include the user identification code changes in the remainder of the lab since the identity API is still experimental and as such it would prevent you from publishing your final code to the Chrome Web Store.