#835 ✓invalid
Jean-Francois Im

OAuth2 does not work on Google App Engine

Reported by Jean-Francois Im | May 14th, 2011 @ 06:19 AM

Framework version: 1.2.1
Platform you're using: Windows, GAE

Reproduction steps:

  1. Add the google app engine module to the facebook-oauth2 demo and configure it so that it works(ie. add loisant.org as 127.0.0.1 in the hosts file)
  2. Try to authenticate using the demo

It will fail with something similar to:

play.exceptions.JavaExecutionException: java.lang.RuntimeException: java.io.IOException: Server returned HTTP response code: 400 for URL: http://graph.facebook.com/oauth/access_token
    at play.mvc.ActionInvoker.invoke(ActionInvoker.java:227)
    at Invocation.HTTP Request(Play!)
Caused by: java.lang.RuntimeException: java.lang.RuntimeException: java.io.IOException: Server returned HTTP response code: 400 for URL: http://graph.facebook.com/oauth/access_token
    at play.libs.ws.WSUrlFetch$WSUrlfetchRequest.get(WSUrlFetch.java:50)
    at controllers.MyOAuth2.retrieveAccessToken(MyOAuth2.java:61)
    at controllers.MyOAuth2.retrieveAccessToken(MyOAuth2.java:66)
    at controllers.MyOAuth2.getAccessToken(MyOAuth2.java:82)
    at controllers.Application.authFacebook(Application.java:43)
    at play.mvc.ActionInvoker.invokeWithContinuation(ActionInvoker.java:540)
    at play.mvc.ActionInvoker.invoke(ActionInvoker.java:498)
    at play.mvc.ActionInvoker.invokeControllerMethod(ActionInvoker.java:474)
    at play.mvc.ActionInvoker.invokeControllerMethod(ActionInvoker.java:469)
    at play.mvc.ActionInvoker.invoke(ActionInvoker.java:157)
    ... 1 more
Caused by: java.lang.RuntimeException: java.io.IOException: Server returned HTTP response code: 400 for URL: http://graph.facebook.com/oauth/access_token
    at play.libs.ws.WSUrlFetch$HttpUrlfetchResponse.<init>(WSUrlFetch.java:206)
    at play.libs.ws.WSUrlFetch$WSUrlfetchRequest.get(WSUrlFetch.java:47)
    ... 10 more
Caused by: java.io.IOException: Server returned HTTP response code: 400 for URL: http://graph.facebook.com/oauth/access_token
    at sun.net.www.protocol.http.HttpURLConnection$6.run(HttpURLConnection.java:1368)
    at java.security.AccessController.doPrivileged(Native Method)
    at sun.net.www.protocol.http.HttpURLConnection.getChainedException(HttpURLConnection.java:1362)
    at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1016)
    at play.libs.ws.WSUrlFetch$HttpUrlfetchResponse.<init>(WSUrlFetch.java:204)
    ... 11 more
Caused by: java.io.IOException: Server returned HTTP response code: 400 for URL: http://graph.facebook.com/oauth/access_token
    at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1313)
    at java.net.HttpURLConnection.getResponseCode(HttpURLConnection.java:373)
    at play.libs.ws.WSUrlFetch$HttpUrlfetchResponse.<init>(WSUrlFetch.java:202)
    ... 11 more

Details:
From looking at the code, it appears that Play on GAE uses WSUrlFetch instead of WSAsync. However, WSUrlFetch does not appear to add its request parameters to the end of the query string, as WSAsync does. Could this be the cause?

Comments and changes to this ticket

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

<h2>Play framework</h2>

Play makes it easier to build Web applications with Java. It is a clean alternative to bloated Enterprise Java stacks. It focuses on developer productivity and targets RESTful architectures. Learn more on the <a href="http://www.playframework.org">http://www.playframework.org</a> website.<br><br>

<h2>Source code is hosted on github</h2>Check out our repository at <a href="http://github.com/playframework/play">http://github.com/playframework/play</a><br><br>

<h2>Contributing, creating a patch</h2> Please read the <a href="http://play.lighthouseapp.com/projects/57987/contributor-guide">contributor guide</a><br><br>

<h2>Reporting Security Vulnerabilities</h2> Since all bug reports are public, please report any security vulnerability directly to <em>guillaume dot bort at gmail dot com</em>.<br><br>

<h2>Creating a bug report</h2> Bug reports are incredibly helpful, so take time to report bugs and request features in our ticket tracker. We’re always grateful for patches to Play’s code. Indeed, bug reports with attached patches will get fixed far quickly than those without any.<br><br>

Please include as much relevant information as possible including the exact framework version you're using and a code snippet that reproduces the problem.<br><br>

Don't have too much expectations. Unless the bug is really a serious "everything is broken" thing, you're creating a ticket to start a discussion. Having a patch (or a branch on Github we can pull from) is better, but then again we'll only pull high quality branches that make sense to be in the core of Play.

Referenced by

Pages