New Security Measures taken by Google concerning “Loopback IP Adresses” or “OAuth out-of-band (oob)”
Question: I would like to know if Chilkat is affected by the new security measures taken by Google concerning “Loopback IP Adresses” or “OAuth out-of-band (oob)”
- Chilkat does not use “oob”, so it’s not an issue.
- The loopback address, such as “http://localhost:port/”, remains valid if you define your app in the Google Developers Console as a “Desktop App”.
If Google decides in the future to disallow the loopback address completely, then you can use the technique as demonstrated with QuickBooks OAuth2 for a Desktop App: https://www.example-code.com/powerbuilder/quickbooks_oauth2_desktop_app.asp
The technique is that you create an endpoint on your own web server written in whatever programming language you desire, such as PHP, ASP.NET, etc. and then use it for the redirect URI, and then the code on your server would send a redirect response to the loopback address. (See the QuickBooks example linked above.)