mirror of
https://github.com/google/earthengine-api.git
synced 2026-01-25 14:58:09 +00:00
122 lines
3.8 KiB
Python
122 lines
3.8 KiB
Python
#!/usr/bin/env python
|
|
"""Prompts the user to authorize OAuth2 access to Earth Engine account.
|
|
|
|
Stores credentials (refresh token) for later use.
|
|
"""
|
|
from __future__ import print_function
|
|
|
|
# pylint: disable=g-bad-import-order
|
|
from six.moves import input # pylint: disable=redefined-builtin
|
|
import errno
|
|
import json
|
|
import os
|
|
import webbrowser
|
|
|
|
# pylint: disable=g-import-not-at-top
|
|
try:
|
|
from urllib.parse import urlencode
|
|
from urllib.request import urlopen
|
|
from urllib.error import HTTPError
|
|
except ImportError:
|
|
import urllib
|
|
from urllib import urlencode
|
|
import urllib2
|
|
from urllib2 import urlopen
|
|
from urllib2 import HTTPError
|
|
from ee import oauthinfo
|
|
|
|
# This URI prompts user to copy and paste a code after successful
|
|
# authorization.
|
|
_redirect_uri = 'urn:ietf:wg:oauth:2.0:oob'
|
|
|
|
|
|
class Authenticate(object):
|
|
"""Prompts the user to authorize OAuth2 access to Earth Engine account."""
|
|
|
|
@classmethod
|
|
def authenticate(cls):
|
|
# TODO(user): Add an additional, non-commandline flow for IPython
|
|
# notebook for added convenience, and to work in notebook environments where
|
|
# commandline isn't available.
|
|
|
|
# This implements the flow from:
|
|
# https://developers.google.com/accounts/docs/OAuth2ForDevices
|
|
|
|
auth_code = cls._request_authorization()
|
|
refresh_token = cls._request_token(auth_code)
|
|
cls._write_token(refresh_token)
|
|
|
|
@classmethod
|
|
def _request_authorization(cls):
|
|
"""Requests authorization from user."""
|
|
|
|
auth_request_params = {
|
|
'scope': oauthinfo.OAuthInfo.SCOPE,
|
|
'redirect_uri': _redirect_uri,
|
|
'response_type': 'code',
|
|
'client_id': oauthinfo.OAuthInfo.CLIENT_ID
|
|
}
|
|
auth_request_url = ('https://accounts.google.com/o/oauth2/auth?' +
|
|
urlencode(auth_request_params))
|
|
|
|
webbrowser.open_new(auth_request_url)
|
|
|
|
print("""
|
|
Opening web browser to address %s
|
|
Please authorize access to your Earth Engine account, and paste
|
|
the resulting code below.
|
|
If the web browser does not start, please manually browse the the URL above.
|
|
""" % auth_request_url)
|
|
|
|
# pylint: disable=bad-builtin
|
|
auth_code = input('Please enter authorization code: ').strip()
|
|
return auth_code
|
|
|
|
@classmethod
|
|
def _request_token(cls, auth_code):
|
|
"""Uses authorization code to request tokens."""
|
|
|
|
token_request_params = {
|
|
'code': auth_code,
|
|
'client_id': oauthinfo.OAuthInfo.CLIENT_ID,
|
|
'client_secret': oauthinfo.OAuthInfo.CLIENT_SECRET,
|
|
'redirect_uri': _redirect_uri,
|
|
'grant_type': 'authorization_code'
|
|
}
|
|
|
|
refresh_token = None
|
|
try:
|
|
try:
|
|
# Python 2.x
|
|
response = urllib2.urlopen('https://accounts.google.com/o/oauth2/token',
|
|
urllib.urlencode(token_request_params)
|
|
).read()
|
|
except NameError:
|
|
# Python 3.x
|
|
response = urlopen('https://accounts.google.com/o/oauth2/token',
|
|
urlencode(token_request_params).encode()
|
|
).read().decode()
|
|
tokens = json.loads(response)
|
|
refresh_token = tokens['refresh_token']
|
|
except HTTPError as e:
|
|
raise Exception('Problem requesting tokens. Please try again. %s %s' %
|
|
(e, e.read()))
|
|
|
|
return refresh_token
|
|
|
|
@classmethod
|
|
def _write_token(cls, refresh_token):
|
|
"""Writes refresh token to filesystem for later use."""
|
|
|
|
credentials_path = oauthinfo.OAuthInfo.credentials_path()
|
|
dirname = os.path.dirname(credentials_path)
|
|
try:
|
|
os.makedirs(dirname)
|
|
except OSError as e:
|
|
if e.errno != errno.EEXIST:
|
|
raise Exception('Error creating %s: %s' % (dirname, e))
|
|
|
|
json.dump({'refresh_token': refresh_token}, open(credentials_path, 'w'))
|
|
|
|
print('\nSuccessfully saved authorization to %s' % credentials_path)
|