在已在全域范围内强制执行 SSL 的 Google Apps 域上使用日历构建应用程序。我最初在使用 GCal4Ruby 库,它使用带有非 SSL 协议的 allcalendars feed URL(GCal4Ruby 调试输出片段 [原文如此]):
…
url = http://www.google.com/calendar/feeds/default/allcalendars/full
Starting post
Header: AuthorizationGoogleLogin auth=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxGData-Version2.1
Redirect recieved, resending get to https://www.google.com/calendar/feeds/default/allcalendars/full?gsessionid=xxxxxxxxxxxxxxxxxxxxxx
Redirect recieved, resending get to https://www.google.com/calendar/feeds/default/allcalendars/full?gsessionid=xxxxxxxxxxxxxxxxxxxxxx
Redirect recieved, resending get to https://www.google.com/calendar/feeds/default/allcalendars/full?gsessionid=xxxxxxxxxxxxxxxxxxxxxx
…
这很有趣,因为它似乎会永远持续下去。我认为我已经在 GCal4Ruby 中本地修复了这个问题,方法是创建通过 HTTPS 协议使用 allcalendars feed 的功能(即:https://www.google.com/calendar/feeds/默认/所有日历/完整)。
让我担心的是,我在 Google 文档中没有看到 allcalendars feed 需要指定 HTTPS 协议。事实上,当我使用 PHP 中的 Zend GData 库访问同一域时,它可以很好地访问非 SSL 私有提要(即 http://www.google.com/calendar/feeds/r -calendar.com_xxxxxxxxxxxxxxxxxxxxxxxxxxx%40group.calendar.google.com/private/full)。
那么问题来了:我误解了什么?是否只有 allcalendars feed 需要通过 SSL 访问,而其余的私有 feed 可以安全地使用身份验证令牌?
有人有任何见解或指向一些好的文档吗?
Building an app using a calendar on a Google Apps domain that has SSL enforced domain-wide. I initially found the problem when building a Rails app using the GCal4Ruby library, which used the allcalendars feed URL with a non-SSL protocol (GCal4Ruby debug output snippet [sic]):
…
url = http://www.google.com/calendar/feeds/default/allcalendars/full
Starting post
Header: AuthorizationGoogleLogin auth=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxGData-Version2.1
Redirect recieved, resending get to https://www.google.com/calendar/feeds/default/allcalendars/full?gsessionid=xxxxxxxxxxxxxxxxxxxxxx
Redirect recieved, resending get to https://www.google.com/calendar/feeds/default/allcalendars/full?gsessionid=xxxxxxxxxxxxxxxxxxxxxx
Redirect recieved, resending get to https://www.google.com/calendar/feeds/default/allcalendars/full?gsessionid=xxxxxxxxxxxxxxxxxxxxxx
…
This was interesting because it seemed to continue forever. I think I've fixed this in GCal4Ruby locally by creating the ability to use the allcalendars feed with the HTTPS protocol (i.e: https://www.google.com/calendar/feeds/default/allcalendars/full).
The thing that worries me is that I see no mention of the allcalendars feed needing to specify the HTTPS protocol in the Google documentation. That, and the fact that when I access the same domain using the Zend GData library in PHP, it works fine accessing the non-SSL private feed (i.e. http://www.google.com/calendar/feeds/r-calendar.com_xxxxxxxxxxxxxxxxxxxxxxxxxxx%40group.calendar.google.com/private/full).
So, the question: What am I misunderstanding? Is it just the allcalendars feed that needs to be accessed with SSL and the rest of the private feeds can safely use the authentication token?
Anyone have any insight, or pointers to some good docs?
发布评论
评论(1)
因此,看起来重定向到普通 URL 对于身份验证来说是正常的,但由于 Google Apps 和帐户在后端的工作方式之间存在一些差异,该库无法正确处理重定向。这与 Zend 库形成鲜明对比,Zend 库似乎可以更稳健地处理这个问题。无论如何,这是我目前的猜测。
So, it looks like perhaps redirect to the normal URL is normal for authentication, but that the library is not handling the redirect correctly because of some differences between the way Google Apps and Accounts work on the backend. This is in contrast to the Zend library, which seems to handle this more robustly. That's my current guess, anyway.