bitfluent

Kamal Fariz Mahyuddin on Ruby, Rails, Git, Chef and other web development geekery.

I'm available for hire for Ruby and Rails development and training, and infrastructure automation with Chef worldwide.

Email me today.

You should follow me on twitter here.
Mar
18th
Wed
permalink

Solving “This website has not registered with Google to establish a secure connection for authorization requests”

I recently ran into an ominous warning on the Google Contacts Access Request landing page.

This website has not registered with Google to establish a secure connection for authorization requests.

After some googling, the solution is to register the requesting domain and upload a self-signed X.509 certificate.

Once completed, I retried the request and got a slightly less threatening warning.

This website is registered with Google to make authorization requests, but has not been configured to send requests securely.

The solution was to add two additional parameters to the request: secure=1 and a signature. Fortunately, I found how to generate the signature in the google-authsub gem. A few minutes later, I added support for signing AuthSub requests to Mislav’s contacts library and got the results I wanted. Commit.

Yay!

Update: I got it wrong about appending the signature to the parameter. I posted a follow up on how to correctly perform signed AuthSub requests in Ruby.

Fork me on GitHub