Object: AuthenticationAuthorizationRequest
Stay organized with collections
Save and categorize content based on your preferences.
Request body
Object sent during authentication-authorization request.
Here's an example of a clear text JSON request:
{
"requestId": "375dhjf9-Uydd="
"authorizations": ["LIST_ACCOUNTS", "ASSOCIATE_ACCOUNT"]
}
The AuthenticationAuthorizationRequest is encrypted and signed using PGP or JWS+JWE.
Further, this value is web-safe base64 encoded. This encoding is referred to below as
Base64UrlEncode. In other words, the clear text JSON version of the
AuthenticationRequest must be passed through the following functions:
Base64UrlEncode(
PGPSignAndEncrypt(
'{"requestId": "375dhjf9-Uydd=",
"authorizations": ["LIST_ACCOUNTS", "ASSOCIATE_ACCOUNT"]}'
)
)
or
Base64UrlEncode(
JWSignAndEncrypt(
'{"requestId": "375dhjf9-Uydd=",
"authorizations": ["LIST_ACCOUNTS", "ASSOCIATE_ACCOUNT"]}'
)
)
| JSON representation |
{
"requestId": string
,
"authorizations": repeated string
}
|
| Fields |
requestId |
string
REQUIRED: Identifier for this request.
|
authorizations |
repeated string
REQUIRED: Reflected back by the payment integrator to
Google. This allows Google to check that the
authorizations passed back are
the same authorizations passed in.
|
All rights reserved. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-09-03 UTC.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-09-03 UTC."],[[["The request body is an object sent during the authentication-authorization process, containing a request ID and desired authorizations."],["This object is encrypted, signed (using PGP or JWS+JWE), and then encoded using web-safe base64 before being sent."],["The `requestId` is a required field that uniquely identifies the request."],["The `authorizations` field lists the permissions requested, which are validated by Google for security."]]],["The `AuthenticationAuthorizationRequest` is a JSON object containing a `requestId` (a unique string identifier) and an `authorizations` array (strings indicating requested permissions). This object, in clear text, is signed and encrypted using either PGP or JWS+JWE. The result is then encoded using Base64UrlEncode. This process is detailed with an example and the required JSON field structure is defined, ensuring that the received authorizations match the ones requested.\n"]]