對話動作已於 2023 年 6 月 13 日淘汰。詳情請參閱「
對話動作已淘汰」。
驗證要求 (Dialogflow)
透過集合功能整理內容
你可以依據偏好儲存及分類內容。
系統會使用授權權杖簽署對對話式 Webhook 的要求
,並採用以下格式:
authorization: "<JWT token>"
驗證權杖符合 JSON Web Token 格式,
其中目標對象欄位值等於 Actions Console 專案 ID
應用程式如要驗證簽章,請解壓縮權杖,並確認目標對象欄位
與應用程式的專案 ID 相符。方法是使用與 JWT 相容的
憑證程式庫,例如 Google API Node.js 用戶端
或直接使用 Actions on Google Node.js 用戶端程式庫
ActionsSdkOptions#verification 選項。
const {actionssdk} = require('actions-on-google');
const app = actionssdk({verification: 'nodejs-cloud-test-project-1234'});
// HTTP Code 403 will be thrown by default on verification error per request.
除非另有註明,否則本頁面中的內容是採用創用 CC 姓名標示 4.0 授權,程式碼範例則為阿帕契 2.0 授權。詳情請參閱《Google Developers 網站政策》。Java 是 Oracle 和/或其關聯企業的註冊商標。
上次更新時間:2025-07-26 (世界標準時間)。
[null,null,["上次更新時間:2025-07-26 (世界標準時間)。"],[[["\u003cp\u003eConversational webhook requests are signed with a JWT token in the authorization header for security.\u003c/p\u003e\n"],["\u003cp\u003eThe JWT token's audience field should match your Actions Console project ID for verification.\u003c/p\u003e\n"],["\u003cp\u003eYou can verify the token using JWT libraries or the Actions on Google Node.js Client Library's built-in verification option.\u003c/p\u003e\n"]]],["Requests include an authorization header with a JSON Web Token (JWT). The token's audience field must match the Actions Console project ID. Verify the token's signature using a JWT library or the `ActionsSdkOptions#verification` option in the Actions on Google Node.js Client Library. This can be set using the `actionssdk` method with the project ID. Failure to verify will result in a HTTP 403 error.\n"],null,["# Verifying requests (Dialogflow)\n\nRequests to your conversational webhook are signed with an authorization token\nin the header, using the following format: \n\n authorization: \"\u003cJWT token\u003e\"\n\nThe auth token follows the [JSON Web Token format](https://tools.ietf.org/html/rfc7519),\nwhere the audience field value is equal to the Actions Console project ID for\nthe app. To verify the signature, unpack the token and ensure the audience field\nmatches the project ID for the app. This can be done with a JWT-compatible\ncredentials library, like the [Google APIs Node.js client](https://github.com/google/google-auth-library-nodejs),\nor directly using the Actions on Google Node.js Client Library\n[`ActionsSdkOptions#verification`](https://actions-on-google.github.io/actions-on-google-nodejs/interfaces/actionssdk.actionssdkoptions.html#verification) option. \n\n```gdscript\nconst {actionssdk} = require('actions-on-google');\n\nconst app = actionssdk({verification: 'nodejs-cloud-test-project-1234'});\n// HTTP Code 403 will be thrown by default on verification error per request.\n```"]]
