User Authorized Requests

When your application makes requests that need identifying the user's Google account. It must include an authorization token. The token also identifies your application to Google.

About authorization protocols

You must use OAuth 2.0 to authorize requests.

Authorize requests with OAuth 2.0

Following endpoints provided by Payments Reseller Subscription API must be authorized by an authenticated user.

The following general process applies in the OAuth2 flow:

  1. When you create your application, you register it using the Google API Console. Google then provides information you'll need later, such as a client ID and a client secret.
  2. When your application needs access to user data, it asks Google for a particular scope of access.
  3. Google displays an OAuth dialog to the user, asking them to authorize your application to request some of their data.
  4. If the user approves, then Google gives your application a short-lived access token.
  5. Your application requests user data, attaching the access token to the request.
  6. If Google determines that your request and the token are valid, it returns the requested data.

OAuth 2.0 Scopes

Here's the OAuth 2.0 scopes accepted by Payments Reseller Subscription API:

Scope Meaning

https://www.googleapis.com/auth/subscriptions.thirdparty.googleone

Manage Google one subscriptions
More to come...

To request access using OAuth 2.0, your application needs the scope information, as well as information that Google supplies when you register your application (such as the client ID and the client secret).