Token refresh after: 'Getting 401 Token invalid - Invalid token: Stateless token expired' fails

[James Jones]

Trying to refresh a token to access Google Contacts where user has approved access_type=offline.

URL to request access: https://accounts.google.com/o/oauth2/auth?client_id=xxxxxxxxxxxxx.apps.googleusercontent.com&redirect_uri=http://localhost:8181/servlet/?activity%3Dgc_oauth&response_type=code&scope=http://www.google.com/m8/feeds/&access_type=offline&approval_prompt=force

This works and I get an access token that works for a while.  At some point that token expires and I need to refresh.  It appears that my refresh token is good (ya29.AHES6ZRhvyWAx4z_8_uJnBuI6tEELZqBDdh54Ti6ydvb5f0), but the access.getAccessToken() returns null after a call to access.refresh().   Here is the code:

HttpTransport TRANSPORT = new NetHttpTransport();

JsonFactory JSON_FACTORY = new JacksonFactory();

GoogleAccessProtectedResource access = new GoogleAccessProtectedResource(parent.accessTokenGC,

TRANSPORT, JSON_FACTORY, GCGlobals.clientID, GCGlobals.clientSecret, parent.refreshTokenGC);

HttpRequestFactory rf = TRANSPORT.createRequestFactory(access);

GenericUrl contactURL = new GenericUrl(GCGlobals.baseScope + "contacts/default/full?max-results=5000&alt=json");

HttpRequest req = rf.buildGetRequest(contactURL);

GoogleHeaders header = new GoogleHeaders();

header.setContentType("application/json");

header.set("GData-Version", "3");

req.setHeaders(header);

try {

res = req.execute();

} catch (com.google.api.client.http.HttpResponseException ee) {

// try to refresh the token

try {

System.out.println(ee.getMessage());   // prints  401 Token invalid - Invalid token: Stateless token expired

access.refreshToken();

parent.accessTokenGC = access.getAccessToken();   // returns null thus I cannot proceed

Any help greatly appreciated!

[Sreenath K]

Hi,

I am facing the same problem... Did you got the solution. If you got any solution for this please help me out.

Thanks

[Yaniv Inbar (יניב ענבר)‎]

Would you kindly upgrade to 1.8.0-beta and try again?  It won't fix the problem, but it may make it slightly easier to debug.

Another thing you can try is to enable logging and look if there is anything suspicious going on:

http://code.google.com/p/google-http-java-client/wiki/HTTP#Logging

Since it says "Stateless token expired", I suspect it is a problem with the refresh token.

Yaniv Inbar
Senior Software Engineer
Google Inc.

[Caroline McLean]

The refresh token is only issued once on the first request.  If you requested the token once and already issued approval the second request for a code for token exchange will not return the refresh token.  You can set the approval_prompt=force to force re-approval and hence reissue of the refresh token or you can revoke the token from the following UI, https://accounts.google.com/IssuedAuthSubTokens and then reissue the request.