OAuth2 Access Token Only Authentication

[roma-glushko]

Hey 👋

Thank you for the async version of the Google SDK!

Is there a way to provide access token generated from OAuth2 Authorization Code workflow and opt out from any automagic refreshing of the token in case it's expired?

I have my own token management that needs to play nice with aiogoogle and I cannot share refresh token or client credentials with the library.
Ideally, I want it to fail with distinguishable exception so I can refresh the token myself and try my request.

Is this something that I can achieve with the latest version of aiogoogle?

[omarryhan]

Hi, my pleasure!

If you pass only the access token, it should use it until it expires. I think it should raise an aiogoogle.AuthError once it expires, not entirely sure.

[roma-glushko]

@omarryhan I have got it to work by specifying both access_token and expires_at:

user_creds = UserCreds(
        access_token="...",
        expires_at=datetime.now(UTC) + timedelta(hours=1),
 )

async with Aiogoogle(user_creds=user_creds) as aiogoogle:
   ...

Without expires_at, it tries to reach out to client credentials and fails here:

https://github.com/omarryhan/aiogoogle/blob/master/aiogoogle/auth/managers.py#L639-L648

It would probably make sense to ignore the fact that expiration time is unknown and try to leverage the token optimistically as soon as it works.

[omarryhan]

Glad it worked out for you, and makes sense ur recommendation

I’ll be happy to review and merge a PR with this change