chrome token在哪看_使用Chrome身份验证API获取id

本文链接：https://blog.csdn.net/weixin_39704314/article/details/111558692

本文介绍了如何在Google Chrome扩展中使用Chrome Identity API进行用户身份验证，并展示了如何通过该API获取OpenID Connect的ID_Token，包括设置manifest.json文件和编写后台脚本的详细步骤。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

I am developping a Google Chrome extension, to allow users to authenticate with their Google Accounts, i decided to use Chrome Identity API.

To authenticate the user in my Application i need to get the ID_Token (signed token)

is there a way to get OpenID Connect Token with Google Chrome Identity API ?

Thanks for your help !

解决方案

This is a paste of my answer from the other thread https://stackoverflow.com/a/32548057/3065313

I've came to the same problem yesterday and since I've found a solution, I might as well share it, as it wasn't that obvious. As far as i know Google does not provide a direct and documented way to do this, but you can use the chrome.identity.launchWebAuthFlow() function.

First you should create an Web application credentials in google console and add the following url as a valid Authorized redirect URI: https://.chromiumapp.org. The URI does not have to exist, chrome will just catch the redirect to this URL and call your callback function later.

manifest.json:

{

"manifest_version": 2,

"name": "name",

"description": "description",

"version": "0.0.0.1",

"background": {

"scripts": ["background.js"]

"permissions": [

"identity"

"oauth2": {

"client_id": ".apps.googleusercontent.com",

"scopes": [

"openid", "email", "profile"

]

}

background.js:

// Using chrome.identity

var manifest = chrome.runtime.getManifest();

var clientId = encodeURIComponent(manifest.oauth2.client_id);

var scopes = encodeURIComponent(manifest.oauth2.scopes.join(' '));

var redirectUri = encodeURIComponent('https://' + chrome.runtime.id + '.chromiumapp.org');

var url = 'https://accounts.google.com/o/oauth2/auth' +

'?client_id=' + clientId +

'&response_type=id_token' +

'&access_type=offline' +

'&redirect_uri=' + redirectUri +

'&scope=' + scopes;

chrome.identity.launchWebAuthFlow(

{

'url': url,

'interactive':true

function(redirectedTo) {

if (chrome.runtime.lastError) {

// Example: Authorization page could not be loaded.

console.log(chrome.runtime.lastError.message);

}

else {

var response = redirectedTo.split('#', 2)[1];

// Example: id_token=&authuser=0&hd=&session_state=&prompt=

console.log(response);

}

);

PS: If you don't need the oauth2 section in your manifest. You can safely omit it, and provide the identifiers and scopes in code only.

EDIT:

For those interested, you don't need the identity API. You can even access the token using a little trick with tabs API. The code is a little longer, but you have better error messages and control. Keep in mind that in the following example, you need to create Chrome App credentials.