Hello all, I have an application (python) on GAE which uses Federated Login. In app.yaml, I have restricted some urls to be accessible only to admins (i.e. login; admin). According to GAE documentation, any url restricted to admin for applications using Federated Login will trigger a call to /_ah/loginrequired and I'm supposed to handle such calls by getting user to login using* users.create_login_url(dest_url, federated_identity).*
Documentation for users.create_login_url says if no federated_identity is specified (when your site is set to use federated identity), the system will default to Google as the OpenID provider. So the application currently defaults to 'https://www.google.com/accounts/o8/id' which is no longer supported by Google and I believe this is the reason why it gives me a 500 server error. I have tried using the published Google Libraries for OpenID Connect. If I use the library outside of the create_login_url, I'm able to log in and get the user email but calling users.get_current_user() returns None and so the application doesn't see me as being logged in which means I don't get access to the url that I had restricted to admins. If I apply the OpenID Connect url to create_login_url, I get a 500 server error. Does anybody know how to handle requests to urls restricted to logged-in users/admins using the new OpenID Connect? -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/google-appengine. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/8383fb62-fd69-4ad0-923f-13fed342309d%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
