Flaskdance doesn't generate a HTTPS uri











up vote
0
down vote

favorite












I'm trying to set up Google sign-in using Flask dance for a flask based website:



from flask_dance.contrib.google import make_google_blueprint, google
blueprint = make_google_blueprint(
client_id= "CLIENT_ID",
client_secret="CLIENT_SECRET",
scope=[
"https://www.googleapis.com/auth/plus.me",
"https://www.googleapis.com/auth/userinfo.email",
]
)


app.register_blueprint(blueprint, url_prefix="/google_login")



And as the documentation suggests, I have the view set up like this:



@app.route('/google_login')
def google_login():
if not google.authorized:
return redirect(url_for("google.login"))
resp = google.get("/oauth2/v2/userinfo")
assert resp.ok, resp.text
return "You are {email} on Google".format(email=resp.json()["email"])


When I was testing I set the environment variable, OAUTHLIB_INSECURE_TRANSPORT to 1 by using



export OAUTHLIB_INSECURE_TRANSPORT=1


And now even after I've removed the environment variable, for some reason the Flaskdance seems to always resolve the URI to a http instead of HTTPS.



This is evident from the redirect uri mismatch error I'm getting (here website refers to the domain name):



The redirect URI in the request, 
http://"website"/google_login/google/authorized, does not match
the ones authorized for the OAuth client.


And here are the authorized redirect URIs I've set up in my Google cloud console:



https://"website"/google_login/google/authorized
https://www."website"/google_login/google/authorized


I tried unsetting the environment variable using this command:



unset OAUTHLIB_INSECURE_TRANSPORT


What am I missing here? Any help would be appreciated.










share|improve this question




























    up vote
    0
    down vote

    favorite












    I'm trying to set up Google sign-in using Flask dance for a flask based website:



    from flask_dance.contrib.google import make_google_blueprint, google
    blueprint = make_google_blueprint(
    client_id= "CLIENT_ID",
    client_secret="CLIENT_SECRET",
    scope=[
    "https://www.googleapis.com/auth/plus.me",
    "https://www.googleapis.com/auth/userinfo.email",
    ]
    )


    app.register_blueprint(blueprint, url_prefix="/google_login")



    And as the documentation suggests, I have the view set up like this:



    @app.route('/google_login')
    def google_login():
    if not google.authorized:
    return redirect(url_for("google.login"))
    resp = google.get("/oauth2/v2/userinfo")
    assert resp.ok, resp.text
    return "You are {email} on Google".format(email=resp.json()["email"])


    When I was testing I set the environment variable, OAUTHLIB_INSECURE_TRANSPORT to 1 by using



    export OAUTHLIB_INSECURE_TRANSPORT=1


    And now even after I've removed the environment variable, for some reason the Flaskdance seems to always resolve the URI to a http instead of HTTPS.



    This is evident from the redirect uri mismatch error I'm getting (here website refers to the domain name):



    The redirect URI in the request, 
    http://"website"/google_login/google/authorized, does not match
    the ones authorized for the OAuth client.


    And here are the authorized redirect URIs I've set up in my Google cloud console:



    https://"website"/google_login/google/authorized
    https://www."website"/google_login/google/authorized


    I tried unsetting the environment variable using this command:



    unset OAUTHLIB_INSECURE_TRANSPORT


    What am I missing here? Any help would be appreciated.










    share|improve this question


























      up vote
      0
      down vote

      favorite









      up vote
      0
      down vote

      favorite











      I'm trying to set up Google sign-in using Flask dance for a flask based website:



      from flask_dance.contrib.google import make_google_blueprint, google
      blueprint = make_google_blueprint(
      client_id= "CLIENT_ID",
      client_secret="CLIENT_SECRET",
      scope=[
      "https://www.googleapis.com/auth/plus.me",
      "https://www.googleapis.com/auth/userinfo.email",
      ]
      )


      app.register_blueprint(blueprint, url_prefix="/google_login")



      And as the documentation suggests, I have the view set up like this:



      @app.route('/google_login')
      def google_login():
      if not google.authorized:
      return redirect(url_for("google.login"))
      resp = google.get("/oauth2/v2/userinfo")
      assert resp.ok, resp.text
      return "You are {email} on Google".format(email=resp.json()["email"])


      When I was testing I set the environment variable, OAUTHLIB_INSECURE_TRANSPORT to 1 by using



      export OAUTHLIB_INSECURE_TRANSPORT=1


      And now even after I've removed the environment variable, for some reason the Flaskdance seems to always resolve the URI to a http instead of HTTPS.



      This is evident from the redirect uri mismatch error I'm getting (here website refers to the domain name):



      The redirect URI in the request, 
      http://"website"/google_login/google/authorized, does not match
      the ones authorized for the OAuth client.


      And here are the authorized redirect URIs I've set up in my Google cloud console:



      https://"website"/google_login/google/authorized
      https://www."website"/google_login/google/authorized


      I tried unsetting the environment variable using this command:



      unset OAUTHLIB_INSECURE_TRANSPORT


      What am I missing here? Any help would be appreciated.










      share|improve this question















      I'm trying to set up Google sign-in using Flask dance for a flask based website:



      from flask_dance.contrib.google import make_google_blueprint, google
      blueprint = make_google_blueprint(
      client_id= "CLIENT_ID",
      client_secret="CLIENT_SECRET",
      scope=[
      "https://www.googleapis.com/auth/plus.me",
      "https://www.googleapis.com/auth/userinfo.email",
      ]
      )


      app.register_blueprint(blueprint, url_prefix="/google_login")



      And as the documentation suggests, I have the view set up like this:



      @app.route('/google_login')
      def google_login():
      if not google.authorized:
      return redirect(url_for("google.login"))
      resp = google.get("/oauth2/v2/userinfo")
      assert resp.ok, resp.text
      return "You are {email} on Google".format(email=resp.json()["email"])


      When I was testing I set the environment variable, OAUTHLIB_INSECURE_TRANSPORT to 1 by using



      export OAUTHLIB_INSECURE_TRANSPORT=1


      And now even after I've removed the environment variable, for some reason the Flaskdance seems to always resolve the URI to a http instead of HTTPS.



      This is evident from the redirect uri mismatch error I'm getting (here website refers to the domain name):



      The redirect URI in the request, 
      http://"website"/google_login/google/authorized, does not match
      the ones authorized for the OAuth client.


      And here are the authorized redirect URIs I've set up in my Google cloud console:



      https://"website"/google_login/google/authorized
      https://www."website"/google_login/google/authorized


      I tried unsetting the environment variable using this command:



      unset OAUTHLIB_INSECURE_TRANSPORT


      What am I missing here? Any help would be appreciated.







      python flask oauth-2.0






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited Nov 22 at 11:38

























      asked Nov 21 at 19:30









      pysupern00b

      12




      12





























          active

          oldest

          votes











          Your Answer






          StackExchange.ifUsing("editor", function () {
          StackExchange.using("externalEditor", function () {
          StackExchange.using("snippets", function () {
          StackExchange.snippets.init();
          });
          });
          }, "code-snippets");

          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "1"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          convertImagesToLinks: true,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: 10,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });














          draft saved

          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53419295%2fflaskdance-doesnt-generate-a-https-uri%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown






























          active

          oldest

          votes













          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes
















          draft saved

          draft discarded




















































          Thanks for contributing an answer to Stack Overflow!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.





          Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


          Please pay close attention to the following guidance:


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53419295%2fflaskdance-doesnt-generate-a-https-uri%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          Popular posts from this blog

          A CLEAN and SIMPLE way to add appendices to Table of Contents and bookmarks

          Calculate evaluation metrics using cross_val_predict sklearn

          Insert data from modal to MySQL (multiple modal on website)