验证请求 (Dialogflow)
使用集合让一切井井有条
根据您的偏好保存内容并对其进行分类。
使用授权令牌对对话 webhook 的请求进行签名
,并采用以下格式:
authorization: "<JWT token>"
身份验证令牌遵循 JSON 网络令牌格式,
其中,受众群体字段值等于
应用。如需验证签名,请解压缩令牌并确保填写了 audience 字段
与应用的项目 ID 匹配。这可以通过与 JWT 兼容的
例如 Google API Node.js 客户端,
或直接使用 Actions on Google Node.js 客户端库
ActionsSdkOptions#verification 选项。
const {actionssdk} = require('actions-on-google');
const app = actionssdk({verification: 'nodejs-cloud-test-project-1234'});
// HTTP Code 403 will be thrown by default on verification error per request.
如未另行说明,那么本页面中的内容已根据知识共享署名 4.0 许可获得了许可,并且代码示例已根据 Apache 2.0 许可获得了许可。有关详情,请参阅 Google 开发者网站政策。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2025-07-26。
[null,null,["最后更新时间 (UTC):2025-07-26。"],[[["\u003cp\u003eConversational webhook requests are signed with a JWT token in the authorization header for security.\u003c/p\u003e\n"],["\u003cp\u003eThe JWT token's audience field should match your Actions Console project ID for verification.\u003c/p\u003e\n"],["\u003cp\u003eYou can verify the token using JWT libraries or the Actions on Google Node.js Client Library's built-in verification option.\u003c/p\u003e\n"]]],["Requests include an authorization header with a JSON Web Token (JWT). The token's audience field must match the Actions Console project ID. Verify the token's signature using a JWT library or the `ActionsSdkOptions#verification` option in the Actions on Google Node.js Client Library. This can be set using the `actionssdk` method with the project ID. Failure to verify will result in a HTTP 403 error.\n"],null,["# Verifying requests (Dialogflow)\n\nRequests to your conversational webhook are signed with an authorization token\nin the header, using the following format: \n\n authorization: \"\u003cJWT token\u003e\"\n\nThe auth token follows the [JSON Web Token format](https://tools.ietf.org/html/rfc7519),\nwhere the audience field value is equal to the Actions Console project ID for\nthe app. To verify the signature, unpack the token and ensure the audience field\nmatches the project ID for the app. This can be done with a JWT-compatible\ncredentials library, like the [Google APIs Node.js client](https://github.com/google/google-auth-library-nodejs),\nor directly using the Actions on Google Node.js Client Library\n[`ActionsSdkOptions#verification`](https://actions-on-google.github.io/actions-on-google-nodejs/interfaces/actionssdk.actionssdkoptions.html#verification) option. \n\n```gdscript\nconst {actionssdk} = require('actions-on-google');\n\nconst app = actionssdk({verification: 'nodejs-cloud-test-project-1234'});\n// HTTP Code 403 will be thrown by default on verification error per request.\n```"]]
