I have registered my Google App Engine app with a third party, OAuth 2.0 enabled, web application (Office365 from Microsoft)
The remote appplication sends this token (in base64 encoding, but I decoded it for this purpose):
AppToken decoded:
{"typ":"JWT","alg":"HS256"}{"aud":"e9e91cd9-0d95-46b7-8a05-f614a683e35d/eog-fire-ice.appspot.com@19d9feae-ba24-4c9e-831c-3132f2ea3974","iss":"00000001-0000-0000-c000-000000000000@19d9feae-ba24-4c9e-831c-3132f2ea3974","nbf":1353563990,"exp":1353607190,"appctxsender":"00000003-0000-0ff1-ce00-000000000000@19d9feae-ba24-4c9e-831c-3132f2ea3974","appctx":"{\"CacheKey\":\"hwqDPFbKDL9mIYpbReWYHeez1uES77UqEsxwienRA9g=\",\"SecurityTokenServiceUri\":\"https://accounts.accesscontrol.windows.net/tokens/OAuth/2\"}","refreshtoken":"IAAAADvEbysE9QepAkRJ52ysDOYGYKl1fEGZzd0ma5JtB2vCl0XGVpoYyPHm_ffcAeDfbNCN2eURI-uaeEeW4UaTUcFP_qzWVxtKqN6jB86TYxsoJdY17wWpKazzuAKcB8mwHPmZK-mSjPpQ76FdGQcFgnzyuGuq3S1Vgq1-g1kB_B-acyDY2bFM9jA60kan_FfThhWW17issOrEs-awtSLUS5EwUGZcMtoBbv1JCKtmUA5XnYexnJhsvDHLaKZQd0D9U8arreCLZnQqx19ppNXf2hgLFgm7WH7Y_Q08RCsLvffv8TdpWpclvB8qglrGetvxjee6zAw-PgLs8PKQrb4kth295DFUDyEHyLRklLe9caTrPG-rzpFRa7xXrS-tI9MlaJI6zRB1heIgxQZffmaO_8gvlYeFM-iZD7fVdPoqc4RqxcpIFqdhoH3FZkQZLYuD7S9gm8gshjWsiwfTsU5ENkeCVK--WFcNyjKrz5GCg5japXLc-M9nFwDCvTDFZUywce4bmf-mjy1M2dKdR-s9fZw","isbrowserhostedapp":"true"}??(tW 34??|???s+ ? 3|? }]g9?
The refreshToken is there, as well as the SecurityTokenServiceUri.
How can I leverage the google-aouth-java-client to get an access token from the SecurityTokenService and/or invoke a OData REST service on the Office365 environmnent ?
TIA
Michel