The Google Account APIs allow third-party applications to get limited access to a user's Google account for certain types of activity. All requests for access must be approved by the Google account holder. Currently the Account APIs cover authentication for these activities:
The Google Account APIs streamline the authentication process for third-party applications by providing a mechanism for requesting and receiving authentication. Many Google APIs support the Account services, including those based on the Google Data APIs.
Access User Data | Authenticate Users |
OAuth
The OAuth open-standard protocol means your third-party web application can use the same authentication mechanism for all service providers--including Google--that support OAuth. When using Google-supported OAuth, you'll need to register your application with Google and digitally sign all requests. Learn more » |
OpenID
Google's Federated Login API, based on the OpenID 2.0 protocol, allows users to log into your website or web application with their Google account. When Google authenticates a user's account, it returns a user ID to your application, which allows you to collect and store user information. Federated Login also allows you to get access to certain user account information, with user approval. Learn more » Hybrid ProtocolCombine the work of both Federated Login and OAuth for data access into one process. Using the
hybrid protocol, you can combine
login and data access into a single step. |
AuthSubGoogle's proprietary AuthSub API offers an alternative to OAuth with varying levels of security. If you opt not to use security certificates, you may be able to authenticate using AuthSub. Some Google services require OAuth-level security (i.e. signed requests). Learn more » |
|
ClientLoginClientLogin gives your desktop or mobile applications the ability to incorporate programmatic login into its interface. ClientLogin is a preferable alternative to sending a user's login credentials with each request; providing higher performance and more security. Learn more » |
The Authentication APIs (with the exception of the Federated Login API) can be used with both regular Google accounts and Google Apps hosted accounts. Although the user experience varies slightly, the process of managing authentication programmatically is the same for both types of accounts.
|
