ارائه یک مشتری

این آموزش به شما نشان می دهد که چگونه با استفاده از Reseller API یک مشتری را تامین کنید.

تهیه صحیح یک مشتری شامل چندین مرحله وابسته به دو طرف است که در چندین API در پلتفرم Google Workspace می باشد.

نمودار قبلی نشان می دهد که کدام API در هر مرحله برای ارائه یک مشتری استفاده می شود:

• از Site Verification API برای قرار دادن رمز تأیید دامنه استفاده کنید.
• از Reseller API برای ایجاد مشتری استفاده کنید.
• از Directory API برای ایجاد اولین کاربر و تبدیل کردن آنها به عنوان مدیر استفاده کنید.
• از Reseller API برای ایجاد اشتراک استفاده کنید.
• از Site Verification API برای تأیید دامنه استفاده کنید.

پیش نیازها

• یک نمونه دامنه Google Reseller.
• یک قرارداد شریک Google Workspace که به طور کامل اجرا شده است.

• یک حساب Google
• شرایط خدمات را در کنسول فروش شریک بپذیرید.
• یک کتابخانه مشتری برای زبان های مختلف دانلود کنید .

محیط خود را تنظیم کنید

برای تکمیل این آموزش، محیط خود را تنظیم کنید.

API را فعال کنید

• در کنسول Google Cloud، API Reseller، Site Verification API و Admin SDK API را فعال کنید.

  APIS را فعال کنید

یک حساب کاربری ایجاد کنید

اعتبارنامه برای یک حساب سرویس ایجاد کنید

1. در کنسول Google Cloud، به menu منو > IAM & Admin > حساب‌های سرویس بروید.

   به حساب های خدماتی بروید

2. حساب سرویس خود را انتخاب کنید.
3. روی کلیدها > افزودن کلید > ایجاد کلید جدید کلیک کنید.
4. JSON را انتخاب کنید، سپس روی ایجاد کلیک کنید.

   جفت کلید عمومی/خصوصی جدید شما تولید شده و به عنوان یک فایل جدید در دستگاه شما دانلود می شود. فایل JSON دانلود شده را به عنوان credentials.json در فهرست کاری خود ذخیره کنید. این فایل تنها کپی این کلید است. برای اطلاعات در مورد نحوه ذخیره ایمن کلید خود، به مدیریت کلیدهای حساب سرویس مراجعه کنید.

5. روی Close کلیک کنید.

تفویض اختیار در سطح دامنه را برای یک حساب سرویس تنظیم کنید

1. در کنسول Google Cloud، به menu منو > IAM & Admin > حساب‌های سرویس بروید.

   به حساب های خدماتی بروید

2. حساب سرویس خود را انتخاب کنید.
3. روی نمایش تنظیمات پیشرفته کلیک کنید.
4. در بخش «تعویض در سطح دامنه»، «شناسه مشتری» حساب سرویس خود را پیدا کنید. برای کپی کردن مقدار شناسه مشتری در کلیپ بورد خود، روی Copy content_copy کلیک کنید.

5. اگر دسترسی فوق‌العاده سرپرست به حساب Google Workspace مربوطه دارید، روی View Google Workspace Admin Console کلیک کنید، سپس با استفاده از یک حساب کاربری super administrator وارد سیستم شوید و این مراحل را دنبال کنید.

   اگر دسترسی سرپرست فوق‌العاده به حساب Google Workspace مربوطه ندارید، با یک سرپرست فوق‌العاده برای آن حساب تماس بگیرید و شناسه مشتری حساب سرویس خود و فهرست محدوده‌های OAuth را برای آنها ارسال کنید تا بتوانند مراحل زیر را در کنسول مدیریت انجام دهند.

1. در کنسول Google Admin، به menu منو > امنیت > کنترل دسترسی و داده > کنترل‌های API بروید.

   به کنترل های API بروید

2. روی Manage Domain Wide Delegation کلیک کنید.
3. روی افزودن جدید کلیک کنید.
4. در قسمت «شناسه مشتری»، شناسه مشتری را که قبلاً کپی کرده‌اید، قرار دهید.
5. در قسمت "OAuth Scopes"، فهرستی از محدوده های مورد نیاز برنامه خود را با کاما وارد کنید. این همان مجموعه دامنه‌هایی است که هنگام پیکربندی صفحه رضایت OAuth تعریف کردید.
6. روی تأیید کلیک کنید.

اشیاء سرویس را با اعتبارنامه های تأیید شده ایجاد کنید

برای شروع با هر API Google، ابتدا باید احراز هویت و اعتبار را از داخل برنامه خود تنظیم کنید. کتابخانه‌های مشتری Google از طرف شما این کار را انجام می‌دهند. همه کتابخانه ها دارای الگوهایی برای ایجاد یک شی اعتبار هستند که می توانید به همه API ها دسترسی داشته باشید و آنها را به هر سرویس منتقل کنید. یک برنامه معمولاً باید یک مجموعه اعتبار داشته باشد و فقط از یک پروژه ابری برای همه تعاملات Google API استفاده کند.

از فایل کلید JSON که هنگام ایجاد حساب سرویس ایجاد کرده اید استفاده کنید.

import sys
from apiclient.discovery import build
from apiclient.http import HttpError
from oauth2client.service_account import ServiceAccountCredentials

############## REPLACE WITH YOUR OWN VALUES ####################
JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json'
RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com'
CUSTOMER_DOMAIN = 'example.com'
CUSTOMER_SITE = 'https://www.example.com'
################################################################

# Full List of scopes:
# https://developers.google.com/identity/protocols/googlescopes
OAUTH2_SCOPES = [
    'https://reseller.googleapis.com/auth/apps.order',
    'https://reseller.googleapis.com/auth/siteverification',
    'https://reseller.googleapis.com/auth/admin.directory.user',
]

credentials = ServiceAccountCredentials.from_json_keyfile_name(
    JSON_PRIVATE_KEY_FILE, OAUTH2_SCOPES).create_delegated(RESELLER_ADMIN_USER)

reseller_service = build(
    serviceName='reseller', version='v1', credentials=credentials)

directory_service = build(
    serviceName='admin', version='directory_v1', credentials=credentials)

verification_service = build(
    serviceName='siteVerification', version='v1', credentials=credentials)

// OAuth2 and HTTP
import com.google.api.client.googleapis.auth.oauth2.GoogleCredential;
import com.google.api.client.googleapis.javanet.GoogleNetHttpTransport;
import com.google.api.client.http.HttpResponseException;
import com.google.api.client.json.jackson2.JacksonFactory;
// Directory API
import com.google.api.services.admin.directory.Directory;
import com.google.api.services.admin.directory.DirectoryScopes;
import com.google.api.services.admin.directory.model.User;
import com.google.api.services.admin.directory.model.UserMakeAdmin;
import com.google.api.services.admin.directory.model.UserName;
// Reseller API
import com.google.api.services.reseller.Reseller;
import com.google.api.services.reseller.ResellerScopes;
import com.google.api.services.reseller.model.Address;
import com.google.api.services.reseller.model.Customer;
import com.google.api.services.reseller.model.RenewalSettings;
import com.google.api.services.reseller.model.Seats;
import com.google.api.services.reseller.model.Subscription;
// Site Verification API
import com.google.api.services.siteVerification.SiteVerification;
import com.google.api.services.siteVerification.SiteVerificationScopes;
import com.google.api.services.siteVerification.model.SiteVerificationWebResourceGettokenRequest;
import com.google.api.services.siteVerification.model.SiteVerificationWebResourceGettokenResponse;
import com.google.api.services.siteVerification.model.SiteVerificationWebResourceResource;
// Java library imports
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.IOException;
import java.security.GeneralSecurityException;
import java.util.Arrays;
import java.util.List;

/**
 * This is a basic example of provisioning a Google Workspace customer.
 */
public class CodelabExample {
  // Full List of scopes:
  // https://developers.google.com/identity/protocols/googlescopes
  private static final List<String> OAUTH2_SCOPES = Arrays.asList(
    ResellerScopes.APPS_ORDER,
    SiteVerificationScopes.SITEVERIFICATION,
    DirectoryScopes.ADMIN_DIRECTORY_USER
  );

  /***************** REPLACE WITH YOUR OWN VALUES ********************************/
  public static final String JSON_PRIVATE_KEY_FILE = "path/to/json_key_file.json";
  public static final String RESELLER_ADMIN_USER = "admin@yourresellerdomain.com";
  public static final String CUSTOMER_DOMAIN = "example.com";
  public static final String CUSTOMER_SITE = "https://www.example.com/";
  /*******************************************************************************/

  public static void main(String[] args)
      throws IOException, GeneralSecurityException, FileNotFoundException {
    // Instantiate services with authenticated credentials
    GoogleCredential jsonCredentials = GoogleCredential
      .fromStream(new FileInputStream(JSON_PRIVATE_KEY_FILE));
    GoogleCredential credentials = new GoogleCredential.Builder()
      .setTransport(GoogleNetHttpTransport.newTrustedTransport())
      .setJsonFactory(JacksonFactory.getDefaultInstance())
      .setServiceAccountScopes(OAUTH2_SCOPES)
      .setServiceAccountUser(RESELLER_ADMIN_USER)
      .setServiceAccountPrivateKey(jsonCredentials.getServiceAccountPrivateKey())
      .setServiceAccountId(jsonCredentials.getServiceAccountId())
      .build();

    Reseller resellerService = new Reseller.Builder(
        credentials.getTransport(),
        credentials.getJsonFactory(),
        credentials).setApplicationName("Google Workspace Creator").build();

    Directory directoryService = new Directory.Builder(
        credentials.getTransport(),
        credentials.getJsonFactory(),
        credentials).setApplicationName("Google Workspace Creator").build();

    SiteVerification verificationService = new SiteVerification.Builder(
        credentials.getTransport(),
        credentials.getJsonFactory(),
        credentials).setApplicationName("Google Workspace Creator").build();

// OAuth2 and HTTP
using Google.Apis.Auth.OAuth2;
using Google.Apis.Services;
// Reseller API
using Google.Apis.Reseller.v1;
using Google.Apis.Reseller.v1.Data;
// Directory API
using Google.Apis.Admin.Directory.directory_v1;
using User = Google.Apis.Admin.Directory.directory_v1.Data.User;
using UserName = Google.Apis.Admin.Directory.directory_v1.Data.UserName;
using UserMakeAdmin = Google.Apis.Admin.Directory.directory_v1.Data.UserMakeAdmin;
//Site Verification API
using Google.Apis.SiteVerification.v1;
using Google.Apis.SiteVerification.v1.Data;
// System imports
using System;
using System.IO;

class CodelabExample
{
    // Full List of scopes:
    // https://developers.google.com/identity/protocols/googlescopes
    static string[] OAUTH2_SCOPES = {
        ResellerService.Scope.AppsOrder,
        DirectoryService.Scope.AdminDirectoryUser,
        SiteVerificationService.Scope.Siteverification
    };

    /***************** REPLACE WITH YOUR OWN VALUES ********************************/
    public static String JSON_PRIVATE_KEY_FILE = "path/to/json_key_file.json";
    public static String RESELLER_ADMIN_USER = "admin@yourresellerdomain.com";
    public static String CUSTOMER_DOMAIN = "example.com";
    public static String CUSTOMER_SITE = "https://www.example.com/";
    /*******************************************************************************/

    static void Main(string[] args)
    {
        GoogleCredential credential;

        using (var stream = new FileStream(JSON_PRIVATE_KEY_FILE, FileMode.Open, FileAccess.Read))
        {
            credential = GoogleCredential
                .FromStream(stream)
                .CreateScoped(OAUTH2_SCOPES)
                .CreateWithUser(RESELLER_ADMIN_USER);
        }

        var resellerService = new ResellerService(new BaseClientService.Initializer()
        {
            HttpClientInitializer = credential,
        });

        var directoryService = new DirectoryService(new BaseClientService.Initializer()
        {
            HttpClientInitializer = credential,
        });

        var verificationService = new SiteVerificationService(new BaseClientService.Initializer()
        {
            HttpClientInitializer = credential,
        });

// https://developers.google.com/api-client-library/php/
require_once 'vendor/autoload.php';

// Full List of scopes:
// https://developers.google.com/identity/protocols/googlescopes
$OAUTH2_SCOPES = [
  Google_Service_Reseller::APPS_ORDER,
  Google_Service_SiteVerification::SITEVERIFICATION,
  Google_Service_Directory::ADMIN_DIRECTORY_USER,
];

######### REPLACE WITH YOUR OWN VALUES ###############
$JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json';
$RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com';
$CUSTOMER_DOMAIN = 'example.com';
$CUSTOMER_SITE = 'https://www.example.com/';
######################################################

$client = new Google_Client();
$client->setAuthConfig($JSON_PRIVATE_KEY_FILE);
$client->setSubject($RESELLER_ADMIN_USER);
$client->setScopes($OAUTH2_SCOPES);

$resellerService = new Google_Service_Reseller($client);
$directoryService = new Google_Service_Directory($client);
$verificationService = new Google_Service_SiteVerification($client);

require 'googleauth'
require 'google/apis/reseller_v1'
require 'google/apis/site_verification_v1'
require 'google/apis/admin_directory_v1'

# Full List of scopes:
# https://developers.google.com/identity/protocols/googlescopes
OAUTH2_SCOPES = [
  'https://reseller.googleapis.com/auth/apps.order',
  'https://reseller.googleapis.com/auth/admin.directory.user',
  'https://reseller.googleapis.com/auth/siteverification',
]

####### REPLACE WITH YOUR OWN VALUES ###############
JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json'
RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com'
CUSTOMER_DOMAIN = 'example.com'
CUSTOMER_SITE = 'https://www.example.com/'
####################################################

credentials = Google::Auth::ServiceAccountCredentials.make_creds(
  json_key_io: File.open(JSON_PRIVATE_KEY_FILE),
  scope: OAUTH2_SCOPES)
credentials.sub = RESELLER_ADMIN_USER

Google::Apis::RequestOptions.default.authorization = credentials

reseller_service = Google::Apis::ResellerV1::ResellerService.new
directory_service = Google::Apis::AdminDirectoryV1::DirectoryService.new
verification_service = Google::Apis::SiteVerificationV1::SiteVerificationService.new

// NOTE: This script needs googleapis 28.0.0 or later as it uses promises
const {google} = require('googleapis');

// ############## REPLACE WITH YOUR OWN VALUES ####################
const JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json';
const RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com';
const CUSTOMER_DOMAIN = 'example.com';
const CUSTOMER_SITE = 'https://www.example.com/';
// ################################################################

// Full List of scopes: https://developers.google.com/identity/protocols/googlescopes
const OAUTH2_SCOPES = [
  'https://reseller.googleapis.com/auth/apps.order',
  'https://reseller.googleapis.com/auth/siteverification',
  'https://reseller.googleapis.com/auth/admin.directory.user',
];

const authJWT = new google.auth.JWT({
  keyFile: JSON_PRIVATE_KEY_FILE,
  scopes: OAUTH2_SCOPES,
  subject: RESELLER_ADMIN_USER,
});

const resellerService = google.reseller({version: 'v1', auth: authJWT});
const directoryService = google.admin({version: 'directory_v1', auth: authJWT});
const verificationService = google.siteVerification({version: 'v1', auth: authJWT});

فرآیند تأیید دامنه را شروع کنید

این مرحله اختیاری است، اما اگر توانایی تأیید دامنه مشتری را دارید، تشویق می‌شود. این مرحله در پایان آموزش زمانی که دامنه را تأیید می کنید به پایان می رسد.

اگر دامنه مشتری را تأیید نکنید، آن‌ها محدودیت‌های زیر را خواهند داشت:

• آنها فقط به کنسول Admin دسترسی دارند که از طریق فرآیند تأیید دستی دامنه هدایت می شوند.
• ممکن است 21 روز پس از ایجاد به حالت تعلیق درآیند.

برای بازیابی رمز تأیید سایت، موارد زیر را انجام دهید:

1. برای بازیابی رمز تأیید سایت، از Site Verification API استفاده کنید. نمی‌توانید تأیید کنید که دامنه قبلاً تأیید شده است یا خیر، اما می‌توانید چندین بار سایت‌ها را بدون هیچ مشکلی تأیید کنید. بسته به اینکه آیا یک INET_DOMAIN یا یک نوع SITE را تأیید می کنید، پارامترهای verificationMethod متفاوت است. ‫ یکی از موارد زیر را انتخاب کنید:

   • برای نوع INET_DOMAIN ، از یکی از پارامترهای verificationMethod زیر استفاده کنید:

     • DNS_TXT
     • DNS_CNAME

     نمونه بازیابی رمز زیر از نوع INET_DOMAIN استفاده می کند:

     پایتون

     # Retrieve the site verification token and place it according to:
     # https://developers.google.com/site-verification/v1/getting_started#tokens
     response = verification_service.webResource().getToken(
         body={
             'site': {
                 'type': 'INET_DOMAIN',
                 'identifier': CUSTOMER_DOMAIN
             },
             'verificationMethod': 'DNS_TXT'
         }).execute()
     print(response)

     جاوا

     // Retrieve the site verification token and place it according to:
     // https://developers.google.com/site-verification/v1/getting_started#tokens
     SiteVerificationWebResourceGettokenRequest.Site getTokenSite =
         new SiteVerificationWebResourceGettokenRequest.Site()
             .setType("INET_DOMAIN")
             .setIdentifier(CUSTOMER_DOMAIN);
     
     SiteVerificationWebResourceGettokenRequest request =
         new SiteVerificationWebResourceGettokenRequest()
             .setVerificationMethod("DNS_TXT")
             .setSite(getTokenSite);
     
     SiteVerificationWebResourceGettokenResponse getTokenResponse =
         verificationService.webResource().getToken(request).execute();
     System.out.println("Site Verification Token: " + getTokenResponse.getToken());

     سی شارپ

     // Retrieve the site verification token and place it according to:
     // https://developers.google.com/site-verification/v1/getting_started#tokens
     SiteVerificationWebResourceGettokenRequest.SiteData getTokenSite =
         new SiteVerificationWebResourceGettokenRequest.SiteData()
         {
             Type = "INET_DOMAIN",
             Identifier = CUSTOMER_DOMAIN
         };
     
     SiteVerificationWebResourceGettokenRequest request =
         new SiteVerificationWebResourceGettokenRequest()
         {
             VerificationMethod = "DNS_TXT",
             Site = getTokenSite
         };
     
     SiteVerificationWebResourceGettokenResponse getTokenResponse =
         verificationService.WebResource.GetToken(request).Execute();
     Console.WriteLine("Site Verification Token: {0}", getTokenResponse.Token);

     PHP

     // Retrieve the site verification token and place it according to:
     // https://developers.google.com/site-verification/v1/getting_started#tokens
     $body =
     new Google_Service_SiteVerification_SiteVerificationWebResourceGettokenRequest([
       'verificationMethod' => 'DNS_TXT',
       'site' => [
         'type' => 'INET_DOMAIN',
         'identifier' => $CUSTOMER_DOMAIN
       ]
     ]);
     $response = $verificationService->webResource->getToken($body);
     print_r ($response);

     روبی

     # Retrieve the site verification token and place it according to:
     # https://developers.google.com/site-verification/v1/getting_started#tokens
     request = Google::Apis::SiteVerificationV1::GetWebResourceTokenRequest.new(
       site: {
         type: 'INET_DOMAIN',
         identifier: CUSTOMER_DOMAIN
       },
       verification_method: 'DNS_TXT'
     )
     
     response = verification_service.get_web_resource_token(request)
     puts response.inspect

     Node.js

     /**
      * Retrieve the site verification token and place it according to:
      * https://developers.google.com/site-verification/v1/getting_started#tokens
      */
     const getTokenPromise = verificationService.webResource.getToken({
       requestBody: {
         site: {
           type: 'INET_DOMAIN',
           identifier: CUSTOMER_DOMAIN,
         },
         verificationMethod: 'DNS_TXT',
       }
     }).then(({data}) => {
       console.log(data);
       return data;
     });

   • برای نوع SITE ، از یکی از پارامترهای verificationMethod زیر استفاده کنید:

     • FILE
     • META

     مثال بازیابی رمز زیر از نوع SITE با روش تأیید FILE استفاده می کند. هنگامی که از نوع تأیید SITE استفاده می کنید، باید شناسه را با http:// یا https:// پیشوند قرار دهید.

     پایتون

     # Retrieve the site verification token and place it according to:
     # https://developers.google.com/site-verification/v1/getting_started#tokens
     response = verification_service.webResource().getToken(
         body={
             'site': {
                 'type': 'SITE',
                 'identifier': CUSTOMER_SITE
             },
             'verificationMethod': 'FILE'
         }).execute()
     print(response)

     جاوا

     // Retrieve the site verification token and place it according to:
     // https://developers.google.com/site-verification/v1/getting_started#tokens
     SiteVerificationWebResourceGettokenRequest.Site getTokenSite =
         new SiteVerificationWebResourceGettokenRequest.Site()
             .setType("SITE")
             .setIdentifier(CUSTOMER_SITE);
     
     SiteVerificationWebResourceGettokenRequest request =
         new SiteVerificationWebResourceGettokenRequest()
             .setVerificationMethod("FILE")
             .setSite(getTokenSite);
     
     SiteVerificationWebResourceGettokenResponse getTokenResponse =
         verificationService.webResource().getToken(request).execute();
     System.out.println("Site Verification Token: " + getTokenResponse.getToken());

     سی شارپ

     // Retrieve the site verification token and place it according to:
     // https://developers.google.com/site-verification/v1/getting_started#tokens
     SiteVerificationWebResourceGettokenRequest.SiteData getTokenSite =
         new SiteVerificationWebResourceGettokenRequest.SiteData()
         {
             Type = "SITE",
             Identifier = CUSTOMER_SITE
         };
     
     SiteVerificationWebResourceGettokenRequest request =
         new SiteVerificationWebResourceGettokenRequest()
         {
             VerificationMethod = "FILE",
             Site = getTokenSite
         };
     
     SiteVerificationWebResourceGettokenResponse getTokenResponse =
         verificationService.WebResource.GetToken(request).Execute();
     Console.WriteLine("Site Verification Token: {0}", getTokenResponse.Token);

     PHP

     // Retrieve the site verification token and place it according to:
     // https://developers.google.com/site-verification/v1/getting_started#tokens
     $body =
     new Google_Service_SiteVerification_SiteVerificationWebResourceGettokenRequest([
       'verificationMethod' => 'FILE',
       'site' => [
         'type' => 'SITE',
         'identifier' => $CUSTOMER_DOMAIN
       ]
     ]);
     $response = $verificationService->webResource->getToken($body);
     print_r($response);

     روبی

     # Retrieve the site verification token and place it according to:
     # https://developers.google.com/site-verification/v1/getting_started#tokens
     request = Google::Apis::SiteVerificationV1::GetWebResourceTokenRequest.new(
       site: {
         type: 'SITE',
         identifier: CUSTOMER_SITE
       },
       verification_method: 'FILE'
     )
     
     response = verification_service.get_web_resource_token(request)
     puts response.inspect

     Node.js

     /**
      * Retrieve the site verification token and place it according to:
      * https://developers.google.com/site-verification/v1/getting_started#tokens
      */
     const getTokenPromise = verificationService.webResource.getToken({
       requestBody: {
         site: {
           type: 'SITE',
           identifier: CUSTOMER_SITE,
         },
         verificationMethod: 'FILE',
       }
     }).then(({data}) => {
       console.log(data);
       return data;
     });

2. کد تأیید سایت را در رکورد یا سایت DNS قرار دهید .

با Reseller API مشتری ایجاد کنید

1. برای تعیین اینکه آیا مشتری از قبل در Google Workspace وجود دارد یا خیر، از روش Customers.Get استفاده کنید:

   پایتون

   # Determine if customer domain already has Google Workspace
   try:
     response = reseller_service.customers().get(
         customerId=CUSTOMER_DOMAIN).execute()
     print('Customer already exists if call succeeds')
     sys.exit()
   except HttpError as error:
     if int(error.resp['status']) == 404:
       print('Domain available for Google Workspace creation')
     else:
       raise

   جاوا

   // Determine if customer domain already has Google Workspace
   try {
     resellerService.customers().get(CUSTOMER_DOMAIN).execute();
     System.out.println("Customer already exists if call succeeds");
     System.exit(0);
   } catch (HttpResponseException e) {
       if (e.getStatusCode() == 404) {
         System.out.println("Domain available for Google Workspace creation");
       } else { 
         throw e; 
       }
   }

   سی شارپ

   // Determine if customer domain already has Google Workspace
   try
   {
       resellerService.Customers.Get(CUSTOMER_DOMAIN).Execute();
       Console.WriteLine("Customer already exists if call succeeds");
       Environment.Exit(0);
   }
   catch (Google.GoogleApiException e) {
       if (e.Error.Code == 404)
       {
           Console.WriteLine("Domain available for Google Workspace creation");
       } else throw e;
   }

   PHP

   // Determine if customer domain already has Google Workspace
   try {
     $response = $resellerService->customers->get($CUSTOMER_DOMAIN);
     exit('Customer already exists if call succeeds');
   } catch(Google_Service_Exception $e) {
     if ($e->getErrors()[0]['reason'] == 'notFound'){
       print ("Domain available for Google Workspace creation\n");
     } else {
       throw $e;
     }
   }

   روبی

   # Determine if customer domain already has Google Workspace
   begin
     reseller_service.get_customer(CUSTOMER_DOMAIN)
     abort('Customer already exists if call succeeds')
   rescue Google::Apis::ClientError => ex
     if ex.status_code == 404
       puts 'Domain available for Google Workspace creation'
     else
       raise ex
     end
   end

   Node.js

   // Determine if customer domain already has Google Workspace
   const getCustomerPromise = resellerService.customers.get({
     customerId: CUSTOMER_DOMAIN
   }).then(() => {
     throw new Error('Customer already exists');
   }, resErr => {
     if (resErr.code === 404) {
       console.log('Domain available for Google Workspace creation');
     } else {
       throw resErr;
     }
   });

2. بسته به پاسخ، موارد زیر را انجام دهید:

   • اگر مشتری وجود نداشته باشد، روش customers.get یک کد خطای HTTP 404 را برمی گرداند. به مرحله بعدی بروید، جایی که یک رکورد مشتری در Google Workspace ایجاد می‌کنید.

   • اگر روش customers.get بدون خطا برمی گردد، با بررسی بدنه پاسخ برای ویژگی alternateEmail ، مشخص کنید که آیا مشتری متعلق به شما است یا خیر. اگر ویژگی alternateEmail وجود ندارد، باید مشتری و اشتراک‌های او را انتقال دهید .

3. یک سابقه مشتری در Google Workspace ایجاد کنید. قبل از اینکه بتوانید با استفاده از دستورالعمل های زیر برای آن مشتری اشتراک ایجاد کنید، باید یک سابقه مشتری ایجاد کنید:

   • alternateEmail نمی‌تواند در همان دامنه با customerDomain باشد.
   • کد postalAddress.countryCode باید یک کد کشور ISO دو کاراکتری باشد.

   مثال زیر ایجاد رکورد مشتری را نشان می دهد:

   پایتون

   # Create customer resource
   response = reseller_service.customers().insert(
       body={
           'customerDomain': CUSTOMER_DOMAIN,
           'alternateEmail': 'marty.mcfly@gmail.com',
           'postalAddress': {
               'contactName': 'Marty McFly',
               'organizationName': 'Acme Corp',
               'postalCode': '10009',
               'countryCode': 'US',
           }
       }).execute()
   print(response)

   جاوا

   // Create customer resource
   Address address = new Address()
     .setContactName("Marty McFly")
     .setOrganizationName("Acme Corp")
     .setCountryCode("US")
     .setPostalCode("10009");
   
   Customer customer = new Customer()
     .setCustomerDomain(CUSTOMER_DOMAIN)
     .setAlternateEmail("marty.mcfly@gmail.com")
     .setPostalAddress(address);
   
   Customer customerResponse = resellerService.customers()
     .insert(customer).execute();
   System.out.println("Created Customer:\n" + customerResponse);

   سی شارپ

   // Create customer resource
   Address address = new Address()
   {
       ContactName = "Marty McFly",
       OrganizationName = "Acme Corp",
       CountryCode = "US",
       PostalCode = "10009"
   };
   
   Customer customer = new Customer()
   {
       CustomerDomain = CUSTOMER_DOMAIN,
       AlternateEmail = "marty.mcfly@gmail.com",
       PostalAddress = address
   };
   
   Customer customerResponse = resellerService.Customers.Insert(customer).Execute();
   Console.WriteLine("Created Customer:\n{0}", customerResponse);

   PHP

   // Create customer resource
   $customer = new Google_Service_Reseller_Customer([
     'customerDomain' => $CUSTOMER_DOMAIN,
     'alternateEmail' => 'marty.mcfly@gmail.com',
     'postalAddress' => [
       'contactName' => 'Marty McFly',
       'organizationName' => 'Acme Corp',
       'countryCode' => 'US',
       'postalCode' => '10009'
     ]
   ]);
   $response = $resellerService->customers->insert($customer);
   print_r ($response);

   روبی

   # Create customer resource
   customer = Google::Apis::ResellerV1::Customer.new(
     customer_domain: CUSTOMER_DOMAIN,
     alternate_email: 'marty.mcfly@gmail.com',
     postal_address: {
       contact_name: 'Marty McFly',
       organization_name: 'Acme Corp',
       country_code: 'US',
       postal_code: '10009'})
   
   response = reseller_service.insert_customer(customer)
   puts response.inspect

   Node.js

   // Create customer resource
   const insertCustomerPromise = resellerService.customers.insert({
     requestBody: {
       customerDomain: CUSTOMER_DOMAIN,
       alternateEmail: 'marty.mcfly@gmail.com',
       postalAddress: {
         contactName: 'Marty McFly',
         organizationName: 'Acme Corp',
         postalCode: '10009',
         countryCode: 'US',
       }
     }
   }).then(({data}) => {
     console.log(data);
     return data;
   });

اولین کاربر ادمین را با Admin SDK API ایجاد کنید

پس از ارائه یک مشتری، باید اولین کاربر را ایجاد کنید و فوراً کاربر را به یک ابر سرپرست دامنه ارتقا دهید تا مشتری بتواند به خدمات جدید خود دسترسی داشته باشد و هرگونه شرایط خدمات قابل اجرا را بپذیرد.

1. اولین کاربر را بسازید و رمز عبور او را تنظیم کنید. رمزهای عبور باید دارای پیچیدگی کافی و حداقل هشت کاراکتر باشند. برای اطلاعات بیشتر، به منبع user مراجعه کنید.

   پایتون

   # Create first admin user
   response = directory_service.users().insert(
       body={
           'primaryEmail': 'marty.mcfly@' + CUSTOMER_DOMAIN,
           'name': {
               'givenName': 'Marty',
               'familyName': 'McFly',
           },
           'password': 'Timecircuit88'
       }).execute()
   print(response)

   جاوا

   // Create first admin user
   String userEmail = "marty.mcfly@" + CUSTOMER_DOMAIN;
   
   UserName name = new UserName();
   name.setGivenName("Marty");
   name.setFamilyName("McFly");
   
   User user = new User();
   user.setPrimaryEmail(userEmail);
   user.setPassword("TimeCircuit88");
   user.setName(name);
   
   User userResponse = directoryService.users().insert(user).execute();
   System.out.println("Created User:\n" + userResponse);

   سی شارپ

   // Create first admin user
   String userEmail = "marty.mcfly@" + CUSTOMER_DOMAIN;
   
   UserName name = new UserName()
   {
       GivenName = "Marty",
       FamilyName = "McFly"
   };
   
   User user = new User()
   {
       PrimaryEmail = userEmail,
       Password = "TimeCircuit88",
       Name = name
   };
   
   User userResponse = directoryService.Users.Insert(user).Execute();
   Console.WriteLine("Created User:\n{0}", userResponse);

   PHP

   // Create first admin user
   $user = new Google_Service_Directory_User([
     'primaryEmail' => 'marty.mcfly@' . $CUSTOMER_DOMAIN,
     'password' => 'Timecircuit88',
     'name' => [
       'givenName' => 'Marty',
       'familyName' => 'McFly',
       'fullName' => 'Marty McFly'
     ]
   ]);
   $response = $directoryService->users->insert($user);
   print_r ($response);

   روبی

   # Create first admin user
   user = Google::Apis::AdminDirectoryV1::User.new(
     name: {
       given_name: 'Marty',
       family_name: 'McFly',
       full_name: 'Marty McFly'
     },
     password: 'Timecircuit88',
     primary_email: 'marty.mcfly@' + CUSTOMER_DOMAIN,
   )
   
   response = directory_service.insert_user(user)
   puts response.inspect

   Node.js

   // Create first admin user
   const insertUserPromise = directoryService.users.insert({
     requestBody: {
       primaryEmail: `marty.mcfly@${CUSTOMER_DOMAIN}`,
       name: {
         givenName: 'Marty',
         familyName: 'McFly',
       },
       password: 'Timecircuit88',
     }
   }).then(({data}) => {
     console.log(data);
     return data;
   });

   اگر تماس برای ایجاد کاربر یک HTTP 409 برگرداند، نام کاربری ممکن است از قبل به عنوان یک حساب Google مصرف کننده وجود داشته باشد.

2. کاربر را به نقش super administrator ارتقا دهید:

   پایتون

   # Promote user to admin status
   response = directory_service.users().makeAdmin(
       userKey='marty.mcfly@' + CUSTOMER_DOMAIN, body={
           'status': True
       }).execute()

   جاوا

   // Promote user to admin status
   UserMakeAdmin admin = new UserMakeAdmin();
   admin.setStatus(true);
   
   directoryService.users().makeAdmin(userEmail, admin).execute();
   System.out.println("User promoted to Admin");

   سی شارپ

   // Promote user to admin status
   UserMakeAdmin admin = new UserMakeAdmin()
   {
       Status = true
   };
   directoryService.Users.MakeAdmin(admin, userEmail).Execute();
   Console.WriteLine("User promoted to Admin");

   PHP

   // Promote user to admin status
   $makeAdmin = new Google_Service_Directory_UserMakeAdmin([
     'status' => true
   ]);
   $directoryService->users->makeAdmin(
     'marty.mcfly@' . $CUSTOMER_DOMAIN,
     $makeAdmin
   );

   روبی

   # Promote user to admin status
   admin_status = Google::Apis::AdminDirectoryV1::UserMakeAdmin.new(
     status: true
   )
   
   response = directory_service.make_user_admin('marty.mcfly@' + CUSTOMER_DOMAIN, admin_status)

   Node.js

   // Promote user to admin status
   const makeAdminPromise = directoryService.users.makeAdmin({
     userKey: `marty.mcfly@${CUSTOMER_DOMAIN}`,
     requestBody: {
       status: true
     }
   });

برای مشتری اشتراک Google Workspace ایجاد کنید

هنگامی که برای یک مشتری اشتراک ایجاد می کنید، باید یک شناسه تراکنش داخلی یا شناسه برای این مشتری در قسمت purchaseOrderId قرار دهید. برای اطلاعات بیشتر درباره آرگومان‌ها و مقادیر خاص، به مدیریت اشتراک‌ها مراجعه کنید.

1. برای ایجاد اشتراک، از اشتراک ها استفاده کنید. تماس را وارد کنید. مثال زیر از یک اشتراک ANNUAL_YEARLY_PAY استفاده می کند:

   پایتون

   # Create subscription resource
   response = reseller_service.subscriptions().insert(
       customerId=CUSTOMER_DOMAIN,
       body={
           'customerId': CUSTOMER_DOMAIN,
           'skuId': '1010020027',
           'plan': {
               'planName': 'ANNUAL_MONTHLY_PAY',
           },
           'seats': {
               'numberOfSeats': 5,
           },
           'renewalSettings': {  # only relevant for annual plans
               'renewalType': 'RENEW_CURRENT_USERS_MONTHLY_PAY'
           }
       }).execute()
   print(response)

   جاوا

   // Create subscription resource
   Seats seats = new Seats()
     .setNumberOfSeats(5);
   
   Subscription.Plan plan = new Subscription.Plan()
     .setPlanName("ANNUAL_YEARLY_PAY");
   
   RenewalSettings renewalSettings = new RenewalSettings()
     .setRenewalType("RENEW_CURRENT_USERS_MONTHLY_PAY");
   
   Subscription subscription = new Subscription()
     .setCustomerId(CUSTOMER_DOMAIN)
     .setSeats(seats)
     .setPlan(plan)
     .setSkuId("1010020027")
     .setRenewalSettings(renewalSettings);
   
   Subscription subscriptionResponse = resellerService.subscriptions()
     .insert(CUSTOMER_DOMAIN, subscription).execute();
   System.out.println("Created Subscription:\n" + subscriptionResponse);

   سی شارپ

   // Create subscription resource
   Seats seats = new Seats()
   {
       NumberOfSeats = 5
   };
   
   Subscription.PlanData plan = new Subscription.PlanData()
   {
       PlanName = "ANNUAL_YEARLY_PAY"
   };
   
   RenewalSettings renewalSettings = new RenewalSettings()
   {
       RenewalType = "RENEW_CURRENT_USERS_MONTHLY_PAY"
   };
   
   Subscription subscription = new Subscription()
   {
       CustomerId = CUSTOMER_DOMAIN,
       Seats = seats,
       Plan = plan,
       SkuId = "1010020027",
       RenewalSettings = renewalSettings
   };
   
   Subscription subscriptionResponse = resellerService.Subscriptions
       .Insert(subscription, CUSTOMER_DOMAIN).Execute();
   Console.WriteLine("Created Subscription:\n" + subscriptionResponse);

   PHP

   // Create subscription resource
   $subscription = new Google_Service_Reseller_Subscription([
     'customerId' => $CUSTOMER_DOMAIN,
     'skuId' => '1010020027',
     'plan' => [
       'planName' => 'ANNUAL_MONTHLY_PAY'
     ],
     'seats' => [
       'numberOfSeats' => '5'
     ],
     'renewalSettings' => [
       'renewalType' => 'RENEW_CURRENT_USERS_MONTHLY_PAY'
     ]
   ]);
   $response = $resellerService->subscriptions->insert(
     $CUSTOMER_DOMAIN,
     $subscription
   );
   print_r ($response);

   روبی

   # Create subscription resource
   subscription = Google::Apis::ResellerV1::Subscription.new(
     customer_id: CUSTOMER_DOMAIN,
     sku_id: '1010020027',
     plan: {
       plan_name: 'ANNUAL_MONTHLY_PAY'
     },
     seats: {
       number_of_seats: 5,
     },
     renewal_settings: {
       renewal_type: 'RENEW_CURRENT_USERS_MONTHLY_PAY'
     }
   )
   
   response = reseller_service.insert_subscription(CUSTOMER_DOMAIN, subscription)
   puts response.inspect

   Node.js

   // Create subscription resource
   const insertSubscriptionPromise = resellerService.subscriptions.insert({
     customerId: CUSTOMER_DOMAIN,
     requestBody: {
       customerId: CUSTOMER_DOMAIN,
       skuId: '1010020027',
       plan: {
         planName: 'ANNUAL_MONTHLY_PAY',
       },
       seats: {
         numberOfSeats: 5,
       },
       renewalSettings: { // only relevant for annual plans
         renewalType: 'RENEW_CURRENT_USERS_MONTHLY_PAY',
       }
     }
   }).then(({data}) => {
     console.log(data);
     return data;
   });

2. اشتراک‌ها در حالت SUSPENDED هستند تا زمانی که مدیر مشتری وارد سیستم شود و شرایط خدمات را بپذیرد. مدیران مشتری در اولین ورود به سیستم خود در هنگام دسترسی به هر ویژگی Google (به عنوان مثال، Gmail یا Google Drive) به شرایط خدمات هدایت می شوند.

دامنه را تأیید کنید و صاحبان دامنه را تعیین کنید

این مرحله اختیاری است اما اگر توانایی تأیید دامنه مشتری را دارید تشویق می شود. فراخوانی Site Verification API webResource.insert() هم دامنه را تأیید می‌کند و هم مالکانی را که در پارامتر owners[] بدنه درخواست مشخص کرده‌اید به آن اختصاص می‌دهد.

مثال زیر نحوه تأیید یک INET_DOMAIN را نشان می دهد:

# Verify domain and designate domain owners
response = verification_service.webResource().insert(
    verificationMethod='DNS_TXT',
    body={
        'site': {
            'type': 'INET_DOMAIN',
            'identifier': CUSTOMER_DOMAIN
        },
        'owners': ['marty.mcfly@' + CUSTOMER_DOMAIN]
    }).execute()
print(response)

// Verify domain and designate domain owners
SiteVerificationWebResourceResource.Site verifySite =
      new SiteVerificationWebResourceResource.Site()
            .setIdentifier(CUSTOMER_DOMAIN)
            .setType("INET_DOMAIN");

List<String> owners = Arrays.asList(userEmail);

SiteVerificationWebResourceResource resource =
  new SiteVerificationWebResourceResource()
        .setSite(verifySite)
        .setOwners(owners);

SiteVerificationWebResourceResource verifyResponse = 
  verificationService.webResource().insert("DNS_TXT", resource).execute();
System.out.println("Site Verification Web Resource:\n" + verifyResponse);

// Verify domain and designate domain owners
SiteVerificationWebResourceResource.SiteData verifySite =
      new SiteVerificationWebResourceResource.SiteData()
      {
          Identifier = CUSTOMER_DOMAIN,
          Type = "INET_DOMAIN"
      };

string[] owners = { userEmail };

SiteVerificationWebResourceResource resource =
  new SiteVerificationWebResourceResource()
  {
      Site = verifySite,
      Owners = owners
  };

SiteVerificationWebResourceResource verifyResponse =
    verificationService.WebResource.Insert(resource, "DNS_TXT").Execute();
Console.WriteLine("Site Verification Web Resource:\n" + verifyResponse);

// Verify domain and designate domain owners
$body =
new Google_Service_SiteVerification_SiteVerificationWebResourceResource([
  'site' => [
    'type' => 'INET_DOMAIN',
    'identifier' => $CUSTOMER_DOMAIN,
  ],
  'owners' => ['marty.mcfly@' . $CUSTOMER_DOMAIN]
]);

$response = $verificationService->webResource->insert('DNS_TXT', $body);
print_r ($response);

# Verify domain and designate domain owners
webResource = Google::Apis::SiteVerificationV1::SiteVerificationWebResourceResource.new(
  site: {
    type: 'INET_DOMAIN',
    identifier: CUSTOMER_DOMAIN
  },
  owners: ['marty.mcfly@' + CUSTOMER_DOMAIN]
)

response = verification_service.insert_web_resource('DNS_TXT', webResource)
puts response.inspect

// Verify domain and designate domain owners
const verifyDomainPromise = verificationService.webResource.insert({
  verificationMethod: 'DNS_TXT',
  requestBody: {
    site: {
      type: 'INET_DOMAIN',
      identifier: CUSTOMER_DOMAIN,
    },
    owners: [`marty.mcfly@${CUSTOMER_DOMAIN}`],
  }
}).then(({data}) => {
  console.log(data);
  return data;
});

در صورت موفقیت آمیز بودن، این تماس یک کد HTTP 200 را برمی گرداند. اگر webResource.insert() نتواند دامنه را تأیید کند، کد خطای سطح HTTP 400 را برمی‌گرداند. مجدداً تماس webResource.insert() را با تأخیر برگشتی امتحان کنید تا دامنه با موفقیت تأیید شود.

همه را کنار هم بگذارید

مثال زیر کد کاملی را برای ارائه یک مشتری Google Workspace نشان می دهد:

"""This is a basic example of provisioning a Google Workspace customer.
"""
import sys
from apiclient.discovery import build
from apiclient.http import HttpError
from oauth2client.service_account import ServiceAccountCredentials

############## REPLACE WITH YOUR OWN VALUES ####################
JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json'
RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com'
CUSTOMER_DOMAIN = 'example.com'
CUSTOMER_SITE = 'https://www.example.com'
################################################################

# Full List of scopes:
# https://developers.google.com/identity/protocols/googlescopes
OAUTH2_SCOPES = [
    'https://reseller.googleapis.com/auth/apps.order',
    'https://reseller.googleapis.com/auth/siteverification',
    'https://reseller.googleapis.com/auth/admin.directory.user',
]

credentials = ServiceAccountCredentials.from_json_keyfile_name(
    JSON_PRIVATE_KEY_FILE, OAUTH2_SCOPES).create_delegated(RESELLER_ADMIN_USER)

reseller_service = build(
    serviceName='reseller', version='v1', credentials=credentials)

directory_service = build(
    serviceName='admin', version='directory_v1', credentials=credentials)

verification_service = build(
    serviceName='siteVerification', version='v1', credentials=credentials)

# Retrieve the site verification token and place it according to:
# https://developers.google.com/site-verification/v1/getting_started#tokens
response = verification_service.webResource().getToken(
    body={
        'site': {
            'type': 'INET_DOMAIN',
            'identifier': CUSTOMER_DOMAIN
        },
        'verificationMethod': 'DNS_TXT'
    }).execute()
print(response)

# Determine if customer domain already has Google Workspace
try:
  response = reseller_service.customers().get(
      customerId=CUSTOMER_DOMAIN).execute()
  print('Customer already exists if call succeeds')
  sys.exit()
except HttpError as error:
  if int(error.resp['status']) == 404:
    print('Domain available for Google Workspace creation')
  else:
    raise

# Create customer resource
response = reseller_service.customers().insert(
    body={
        'customerDomain': CUSTOMER_DOMAIN,
        'alternateEmail': 'marty.mcfly@gmail.com',
        'postalAddress': {
            'contactName': 'Marty McFly',
            'organizationName': 'Acme Corp',
            'postalCode': '10009',
            'countryCode': 'US',
        }
    }).execute()
print(response)

# Create first admin user
response = directory_service.users().insert(
    body={
        'primaryEmail': 'marty.mcfly@' + CUSTOMER_DOMAIN,
        'name': {
            'givenName': 'Marty',
            'familyName': 'McFly',
        },
        'password': 'Timecircuit88'
    }).execute()
print(response)

# Promote user to admin status
response = directory_service.users().makeAdmin(
    userKey='marty.mcfly@' + CUSTOMER_DOMAIN, body={
        'status': True
    }).execute()

# Create subscription resource
response = reseller_service.subscriptions().insert(
    customerId=CUSTOMER_DOMAIN,
    body={
        'customerId': CUSTOMER_DOMAIN,
        'skuId': '1010020027',
        'plan': {
            'planName': 'ANNUAL_MONTHLY_PAY',
        },
        'seats': {
            'numberOfSeats': 5,
        },
        'renewalSettings': {  # only relevant for annual plans
            'renewalType': 'RENEW_CURRENT_USERS_MONTHLY_PAY'
        }
    }).execute()
print(response)

# Verify domain and designate domain owners
response = verification_service.webResource().insert(
    verificationMethod='DNS_TXT',
    body={
        'site': {
            'type': 'INET_DOMAIN',
            'identifier': CUSTOMER_DOMAIN
        },
        'owners': ['marty.mcfly@' + CUSTOMER_DOMAIN]
    }).execute()
print(response)

// OAuth2 and HTTP
import com.google.api.client.googleapis.auth.oauth2.GoogleCredential;
import com.google.api.client.googleapis.javanet.GoogleNetHttpTransport;
import com.google.api.client.http.HttpResponseException;
import com.google.api.client.json.jackson2.JacksonFactory;
// Directory API
import com.google.api.services.admin.directory.Directory;
import com.google.api.services.admin.directory.DirectoryScopes;
import com.google.api.services.admin.directory.model.User;
import com.google.api.services.admin.directory.model.UserMakeAdmin;
import com.google.api.services.admin.directory.model.UserName;
// Reseller API
import com.google.api.services.reseller.Reseller;
import com.google.api.services.reseller.ResellerScopes;
import com.google.api.services.reseller.model.Address;
import com.google.api.services.reseller.model.Customer;
import com.google.api.services.reseller.model.RenewalSettings;
import com.google.api.services.reseller.model.Seats;
import com.google.api.services.reseller.model.Subscription;
// Site Verification API
import com.google.api.services.siteVerification.SiteVerification;
import com.google.api.services.siteVerification.SiteVerificationScopes;
import com.google.api.services.siteVerification.model.SiteVerificationWebResourceGettokenRequest;
import com.google.api.services.siteVerification.model.SiteVerificationWebResourceGettokenResponse;
import com.google.api.services.siteVerification.model.SiteVerificationWebResourceResource;
// Java library imports
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.IOException;
import java.security.GeneralSecurityException;
import java.util.Arrays;
import java.util.List;

/**
 * This is a basic example of provisioning a Google Workspace customer.
 */
public class CodelabExample {
  // Full List of scopes:
  // https://developers.google.com/identity/protocols/googlescopes
  private static final List<String> OAUTH2_SCOPES = Arrays.asList(
    ResellerScopes.APPS_ORDER,
    SiteVerificationScopes.SITEVERIFICATION,
    DirectoryScopes.ADMIN_DIRECTORY_USER
  );

  /***************** REPLACE WITH YOUR OWN VALUES ********************************/
  public static final String JSON_PRIVATE_KEY_FILE = "path/to/json_key_file.json";
  public static final String RESELLER_ADMIN_USER = "admin@yourresellerdomain.com";
  public static final String CUSTOMER_DOMAIN = "example.com";
  public static final String CUSTOMER_SITE = "https://www.example.com/";
  /*******************************************************************************/

  public static void main(String[] args)
      throws IOException, GeneralSecurityException, FileNotFoundException {
    // Instantiate services with authenticated credentials
    GoogleCredential jsonCredentials = GoogleCredential
      .fromStream(new FileInputStream(JSON_PRIVATE_KEY_FILE));
    GoogleCredential credentials = new GoogleCredential.Builder()
      .setTransport(GoogleNetHttpTransport.newTrustedTransport())
      .setJsonFactory(JacksonFactory.getDefaultInstance())
      .setServiceAccountScopes(OAUTH2_SCOPES)
      .setServiceAccountUser(RESELLER_ADMIN_USER)
      .setServiceAccountPrivateKey(jsonCredentials.getServiceAccountPrivateKey())
      .setServiceAccountId(jsonCredentials.getServiceAccountId())
      .build();

    Reseller resellerService = new Reseller.Builder(
        credentials.getTransport(),
        credentials.getJsonFactory(),
        credentials).setApplicationName("Google Workspace Creator").build();

    Directory directoryService = new Directory.Builder(
        credentials.getTransport(),
        credentials.getJsonFactory(),
        credentials).setApplicationName("Google Workspace Creator").build();

    SiteVerification verificationService = new SiteVerification.Builder(
        credentials.getTransport(),
        credentials.getJsonFactory(),
        credentials).setApplicationName("Google Workspace Creator").build();

    // Retrieve the site verification token and place it according to:
    // https://developers.google.com/site-verification/v1/getting_started#tokens
    SiteVerificationWebResourceGettokenRequest.Site getTokenSite =
        new SiteVerificationWebResourceGettokenRequest.Site()
            .setType("INET_DOMAIN")
            .setIdentifier(CUSTOMER_DOMAIN);

    SiteVerificationWebResourceGettokenRequest request =
        new SiteVerificationWebResourceGettokenRequest()
            .setVerificationMethod("DNS_TXT")
            .setSite(getTokenSite);

    SiteVerificationWebResourceGettokenResponse getTokenResponse =
        verificationService.webResource().getToken(request).execute();
    System.out.println("Site Verification Token: " + getTokenResponse.getToken());

    // Determine if customer domain already has Google Workspace
    try {
      resellerService.customers().get(CUSTOMER_DOMAIN).execute();
      System.out.println("Customer already exists if call succeeds");
      System.exit(0);
    } catch (HttpResponseException e) {
        if (e.getStatusCode() == 404) {
          System.out.println("Domain available for Google Workspace creation");
        } else { 
          throw e; 
        }
    }

    // Create customer resource
    Address address = new Address()
      .setContactName("Marty McFly")
      .setOrganizationName("Acme Corp")
      .setCountryCode("US")
      .setPostalCode("10009");

    Customer customer = new Customer()
      .setCustomerDomain(CUSTOMER_DOMAIN)
      .setAlternateEmail("marty.mcfly@gmail.com")
      .setPostalAddress(address);

    Customer customerResponse = resellerService.customers()
      .insert(customer).execute();
    System.out.println("Created Customer:\n" + customerResponse);

    // Create first admin user
    String userEmail = "marty.mcfly@" + CUSTOMER_DOMAIN;

    UserName name = new UserName();
    name.setGivenName("Marty");
    name.setFamilyName("McFly");

    User user = new User();
    user.setPrimaryEmail(userEmail);
    user.setPassword("TimeCircuit88");
    user.setName(name);

    User userResponse = directoryService.users().insert(user).execute();
    System.out.println("Created User:\n" + userResponse);

    // Promote user to admin status
    UserMakeAdmin admin = new UserMakeAdmin();
    admin.setStatus(true);

    directoryService.users().makeAdmin(userEmail, admin).execute();
    System.out.println("User promoted to Admin");

    // Create subscription resource
    Seats seats = new Seats()
      .setNumberOfSeats(5);

    Subscription.Plan plan = new Subscription.Plan()
      .setPlanName("ANNUAL_YEARLY_PAY");

    RenewalSettings renewalSettings = new RenewalSettings()
      .setRenewalType("RENEW_CURRENT_USERS_MONTHLY_PAY");

    Subscription subscription = new Subscription()
      .setCustomerId(CUSTOMER_DOMAIN)
      .setSeats(seats)
      .setPlan(plan)
      .setSkuId("1010020027")
      .setRenewalSettings(renewalSettings);

    Subscription subscriptionResponse = resellerService.subscriptions()
      .insert(CUSTOMER_DOMAIN, subscription).execute();
    System.out.println("Created Subscription:\n" + subscriptionResponse);

    // Verify domain and designate domain owners
    SiteVerificationWebResourceResource.Site verifySite =
          new SiteVerificationWebResourceResource.Site()
                .setIdentifier(CUSTOMER_DOMAIN)
                .setType("INET_DOMAIN");

    List<String> owners = Arrays.asList(userEmail);

    SiteVerificationWebResourceResource resource =
      new SiteVerificationWebResourceResource()
            .setSite(verifySite)
            .setOwners(owners);

    SiteVerificationWebResourceResource verifyResponse = 
      verificationService.webResource().insert("DNS_TXT", resource).execute();
    System.out.println("Site Verification Web Resource:\n" + verifyResponse);
  }
}

// OAuth2 and HTTP
using Google.Apis.Auth.OAuth2;
using Google.Apis.Services;
// Reseller API
using Google.Apis.Reseller.v1;
using Google.Apis.Reseller.v1.Data;
// Directory API
using Google.Apis.Admin.Directory.directory_v1;
using User = Google.Apis.Admin.Directory.directory_v1.Data.User;
using UserName = Google.Apis.Admin.Directory.directory_v1.Data.UserName;
using UserMakeAdmin = Google.Apis.Admin.Directory.directory_v1.Data.UserMakeAdmin;
//Site Verification API
using Google.Apis.SiteVerification.v1;
using Google.Apis.SiteVerification.v1.Data;
// System imports
using System;
using System.IO;

class CodelabExample
{
    // Full List of scopes:
    // https://developers.google.com/identity/protocols/googlescopes
    static string[] OAUTH2_SCOPES = {
        ResellerService.Scope.AppsOrder,
        DirectoryService.Scope.AdminDirectoryUser,
        SiteVerificationService.Scope.Siteverification
    };

    /***************** REPLACE WITH YOUR OWN VALUES ********************************/
    public static String JSON_PRIVATE_KEY_FILE = "path/to/json_key_file.json";
    public static String RESELLER_ADMIN_USER = "admin@yourresellerdomain.com";
    public static String CUSTOMER_DOMAIN = "example.com";
    public static String CUSTOMER_SITE = "https://www.example.com/";
    /*******************************************************************************/

    static void Main(string[] args)
    {
        GoogleCredential credential;

        using (var stream = new FileStream(JSON_PRIVATE_KEY_FILE, FileMode.Open, FileAccess.Read))
        {
            credential = GoogleCredential
                .FromStream(stream)
                .CreateScoped(OAUTH2_SCOPES)
                .CreateWithUser(RESELLER_ADMIN_USER);
        }

        var resellerService = new ResellerService(new BaseClientService.Initializer()
        {
            HttpClientInitializer = credential,
        });

        var directoryService = new DirectoryService(new BaseClientService.Initializer()
        {
            HttpClientInitializer = credential,
        });

        var verificationService = new SiteVerificationService(new BaseClientService.Initializer()
        {
            HttpClientInitializer = credential,
        });

        // Retrieve the site verification token and place it according to:
        // https://developers.google.com/site-verification/v1/getting_started#tokens
        SiteVerificationWebResourceGettokenRequest.SiteData getTokenSite =
            new SiteVerificationWebResourceGettokenRequest.SiteData()
            {
                Type = "INET_DOMAIN",
                Identifier = CUSTOMER_DOMAIN
            };

        SiteVerificationWebResourceGettokenRequest request =
            new SiteVerificationWebResourceGettokenRequest()
            {
                VerificationMethod = "DNS_TXT",
                Site = getTokenSite
            };

        SiteVerificationWebResourceGettokenResponse getTokenResponse =
            verificationService.WebResource.GetToken(request).Execute();
        Console.WriteLine("Site Verification Token: {0}", getTokenResponse.Token);

        // Determine if customer domain already has Google Workspace
        try
        {
            resellerService.Customers.Get(CUSTOMER_DOMAIN).Execute();
            Console.WriteLine("Customer already exists if call succeeds");
            Environment.Exit(0);
        }
        catch (Google.GoogleApiException e) {
            if (e.Error.Code == 404)
            {
                Console.WriteLine("Domain available for Google Workspace creation");
            } else throw e;
        }

        // Create customer resource
        Address address = new Address()
        {
            ContactName = "Marty McFly",
            OrganizationName = "Acme Corp",
            CountryCode = "US",
            PostalCode = "10009"
        };

        Customer customer = new Customer()
        {
            CustomerDomain = CUSTOMER_DOMAIN,
            AlternateEmail = "marty.mcfly@gmail.com",
            PostalAddress = address
        };

        Customer customerResponse = resellerService.Customers.Insert(customer).Execute();
        Console.WriteLine("Created Customer:\n{0}", customerResponse);

        // Create first admin user
        String userEmail = "marty.mcfly@" + CUSTOMER_DOMAIN;

        UserName name = new UserName()
        {
            GivenName = "Marty",
            FamilyName = "McFly"
        };

        User user = new User()
        {
            PrimaryEmail = userEmail,
            Password = "TimeCircuit88",
            Name = name
        };

        User userResponse = directoryService.Users.Insert(user).Execute();
        Console.WriteLine("Created User:\n{0}", userResponse);

        // Promote user to admin status
        UserMakeAdmin admin = new UserMakeAdmin()
        {
            Status = true
        };
        directoryService.Users.MakeAdmin(admin, userEmail).Execute();
        Console.WriteLine("User promoted to Admin");

        // Create subscription resource
        Seats seats = new Seats()
        {
            NumberOfSeats = 5
        };

        Subscription.PlanData plan = new Subscription.PlanData()
        {
            PlanName = "ANNUAL_YEARLY_PAY"
        };

        RenewalSettings renewalSettings = new RenewalSettings()
        {
            RenewalType = "RENEW_CURRENT_USERS_MONTHLY_PAY"
        };

        Subscription subscription = new Subscription()
        {
            CustomerId = CUSTOMER_DOMAIN,
            Seats = seats,
            Plan = plan,
            SkuId = "1010020027",
            RenewalSettings = renewalSettings
        };

        Subscription subscriptionResponse = resellerService.Subscriptions
            .Insert(subscription, CUSTOMER_DOMAIN).Execute();
        Console.WriteLine("Created Subscription:\n" + subscriptionResponse);

        // Verify domain and designate domain owners
        SiteVerificationWebResourceResource.SiteData verifySite =
              new SiteVerificationWebResourceResource.SiteData()
              {
                  Identifier = CUSTOMER_DOMAIN,
                  Type = "INET_DOMAIN"
              };

        string[] owners = { userEmail };

        SiteVerificationWebResourceResource resource =
          new SiteVerificationWebResourceResource()
          {
              Site = verifySite,
              Owners = owners
          };

        SiteVerificationWebResourceResource verifyResponse =
            verificationService.WebResource.Insert(resource, "DNS_TXT").Execute();
        Console.WriteLine("Site Verification Web Resource:\n" + verifyResponse);
    }
}

// https://developers.google.com/api-client-library/php/
require_once 'vendor/autoload.php';

// Full List of scopes:
// https://developers.google.com/identity/protocols/googlescopes
$OAUTH2_SCOPES = [
  Google_Service_Reseller::APPS_ORDER,
  Google_Service_SiteVerification::SITEVERIFICATION,
  Google_Service_Directory::ADMIN_DIRECTORY_USER,
];

######### REPLACE WITH YOUR OWN VALUES ###############
$JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json';
$RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com';
$CUSTOMER_DOMAIN = 'example.com';
$CUSTOMER_SITE = 'https://www.example.com/';
######################################################

$client = new Google_Client();
$client->setAuthConfig($JSON_PRIVATE_KEY_FILE);
$client->setSubject($RESELLER_ADMIN_USER);
$client->setScopes($OAUTH2_SCOPES);

$resellerService = new Google_Service_Reseller($client);
$directoryService = new Google_Service_Directory($client);
$verificationService = new Google_Service_SiteVerification($client);

// Retrieve the site verification token and place it according to:
// https://developers.google.com/site-verification/v1/getting_started#tokens
$body =
new Google_Service_SiteVerification_SiteVerificationWebResourceGettokenRequest([
  'verificationMethod' => 'DNS_TXT',
  'site' => [
    'type' => 'INET_DOMAIN',
    'identifier' => $CUSTOMER_DOMAIN
  ]
]);
$response = $verificationService->webResource->getToken($body);
print_r ($response);

// Determine if customer domain already has Google Workspace
try {
  $response = $resellerService->customers->get($CUSTOMER_DOMAIN);
  exit('Customer already exists if call succeeds');
} catch(Google_Service_Exception $e) {
  if ($e->getErrors()[0]['reason'] == 'notFound'){
    print ("Domain available for Google Workspace creation\n");
  } else {
    throw $e;
  }
}

// Create customer resource
$customer = new Google_Service_Reseller_Customer([
  'customerDomain' => $CUSTOMER_DOMAIN,
  'alternateEmail' => 'marty.mcfly@gmail.com',
  'postalAddress' => [
    'contactName' => 'Marty McFly',
    'organizationName' => 'Acme Corp',
    'countryCode' => 'US',
    'postalCode' => '10009'
  ]
]);
$response = $resellerService->customers->insert($customer);
print_r ($response);

// Create first admin user
$user = new Google_Service_Directory_User([
  'primaryEmail' => 'marty.mcfly@' . $CUSTOMER_DOMAIN,
  'password' => 'Timecircuit88',
  'name' => [
    'givenName' => 'Marty',
    'familyName' => 'McFly',
    'fullName' => 'Marty McFly'
  ]
]);
$response = $directoryService->users->insert($user);
print_r ($response);

// Promote user to admin status
$makeAdmin = new Google_Service_Directory_UserMakeAdmin([
  'status' => true
]);
$directoryService->users->makeAdmin(
  'marty.mcfly@' . $CUSTOMER_DOMAIN,
  $makeAdmin
);

// Create subscription resource
$subscription = new Google_Service_Reseller_Subscription([
  'customerId' => $CUSTOMER_DOMAIN,
  'skuId' => '1010020027',
  'plan' => [
    'planName' => 'ANNUAL_MONTHLY_PAY'
  ],
  'seats' => [
    'numberOfSeats' => '5'
  ],
  'renewalSettings' => [
    'renewalType' => 'RENEW_CURRENT_USERS_MONTHLY_PAY'
  ]
]);
$response = $resellerService->subscriptions->insert(
  $CUSTOMER_DOMAIN,
  $subscription
);
print_r ($response);

// Verify domain and designate domain owners
$body =
new Google_Service_SiteVerification_SiteVerificationWebResourceResource([
  'site' => [
    'type' => 'INET_DOMAIN',
    'identifier' => $CUSTOMER_DOMAIN,
  ],
  'owners' => ['marty.mcfly@' . $CUSTOMER_DOMAIN]
]);

$response = $verificationService->webResource->insert('DNS_TXT', $body);
print_r ($response);

require 'googleauth'
require 'google/apis/reseller_v1'
require 'google/apis/site_verification_v1'
require 'google/apis/admin_directory_v1'

# Full List of scopes:
# https://developers.google.com/identity/protocols/googlescopes
OAUTH2_SCOPES = [
  'https://reseller.googleapis.com/auth/apps.order',
  'https://reseller.googleapis.com/auth/admin.directory.user',
  'https://reseller.googleapis.com/auth/siteverification',
]

####### REPLACE WITH YOUR OWN VALUES ###############
JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json'
RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com'
CUSTOMER_DOMAIN = 'example.com'
CUSTOMER_SITE = 'https://www.example.com/'
####################################################

credentials = Google::Auth::ServiceAccountCredentials.make_creds(
  json_key_io: File.open(JSON_PRIVATE_KEY_FILE),
  scope: OAUTH2_SCOPES)
credentials.sub = RESELLER_ADMIN_USER

Google::Apis::RequestOptions.default.authorization = credentials

reseller_service = Google::Apis::ResellerV1::ResellerService.new
directory_service = Google::Apis::AdminDirectoryV1::DirectoryService.new
verification_service = Google::Apis::SiteVerificationV1::SiteVerificationService.new

# Retrieve the site verification token and place it according to:
# https://developers.google.com/site-verification/v1/getting_started#tokens
request = Google::Apis::SiteVerificationV1::GetWebResourceTokenRequest.new(
  site: {
    type: 'INET_DOMAIN',
    identifier: CUSTOMER_DOMAIN
  },
  verification_method: 'DNS_TXT'
)

response = verification_service.get_web_resource_token(request)
puts response.inspect

# Determine if customer domain already has Google Workspace
begin
  reseller_service.get_customer(CUSTOMER_DOMAIN)
  abort('Customer already exists if call succeeds')
rescue Google::Apis::ClientError => ex
  if ex.status_code == 404
    puts 'Domain available for Google Workspace creation'
  else
    raise ex
  end
end

# Create customer resource
customer = Google::Apis::ResellerV1::Customer.new(
  customer_domain: CUSTOMER_DOMAIN,
  alternate_email: 'marty.mcfly@gmail.com',
  postal_address: {
    contact_name: 'Marty McFly',
    organization_name: 'Acme Corp',
    country_code: 'US',
    postal_code: '10009'})

response = reseller_service.insert_customer(customer)
puts response.inspect

# Create first admin user
user = Google::Apis::AdminDirectoryV1::User.new(
  name: {
    given_name: 'Marty',
    family_name: 'McFly',
    full_name: 'Marty McFly'
  },
  password: 'Timecircuit88',
  primary_email: 'marty.mcfly@' + CUSTOMER_DOMAIN,
)

response = directory_service.insert_user(user)
puts response.inspect

# Promote user to admin status
admin_status = Google::Apis::AdminDirectoryV1::UserMakeAdmin.new(
  status: true
)

response = directory_service.make_user_admin('marty.mcfly@' + CUSTOMER_DOMAIN, admin_status)

# Create subscription resource
subscription = Google::Apis::ResellerV1::Subscription.new(
  customer_id: CUSTOMER_DOMAIN,
  sku_id: '1010020027',
  plan: {
    plan_name: 'ANNUAL_MONTHLY_PAY'
  },
  seats: {
    number_of_seats: 5,
  },
  renewal_settings: {
    renewal_type: 'RENEW_CURRENT_USERS_MONTHLY_PAY'
  }
)

response = reseller_service.insert_subscription(CUSTOMER_DOMAIN, subscription)
puts response.inspect

# Verify domain and designate domain owners
webResource = Google::Apis::SiteVerificationV1::SiteVerificationWebResourceResource.new(
  site: {
    type: 'INET_DOMAIN',
    identifier: CUSTOMER_DOMAIN
  },
  owners: ['marty.mcfly@' + CUSTOMER_DOMAIN]
)

response = verification_service.insert_web_resource('DNS_TXT', webResource)
puts response.inspect

// NOTE: This script needs googleapis 28.0.0 or later as it uses promises
const {google} = require('googleapis');

// ############## REPLACE WITH YOUR OWN VALUES ####################
const JSON_PRIVATE_KEY_FILE = 'path/to/json_key_file.json';
const RESELLER_ADMIN_USER = 'admin@yourresellerdomain.com';
const CUSTOMER_DOMAIN = 'example.com';
const CUSTOMER_SITE = 'https://www.example.com/';
// ################################################################

// Full List of scopes: https://developers.google.com/identity/protocols/googlescopes
const OAUTH2_SCOPES = [
  'https://reseller.googleapis.com/auth/apps.order',
  'https://reseller.googleapis.com/auth/siteverification',
  'https://reseller.googleapis.com/auth/admin.directory.user',
];

const authJWT = new google.auth.JWT({
  keyFile: JSON_PRIVATE_KEY_FILE,
  scopes: OAUTH2_SCOPES,
  subject: RESELLER_ADMIN_USER,
});

const resellerService = google.reseller({version: 'v1', auth: authJWT});
const directoryService = google.admin({version: 'directory_v1', auth: authJWT});
const verificationService = google.siteVerification({version: 'v1', auth: authJWT});

// Run all the steps one after each other, and exit as soon as one of them fail
Promise.resolve()
  .then(() => {
    /**
     * Retrieve the site verification token and place it according to:
     * https://developers.google.com/site-verification/v1/getting_started#tokens
     */
    const getTokenPromise = verificationService.webResource.getToken({
      requestBody: {
        site: {
          type: 'INET_DOMAIN',
          identifier: CUSTOMER_DOMAIN,
        },
        verificationMethod: 'DNS_TXT',
      }
    }).then(({data}) => {
      console.log(data);
      return data;
    });


    return getTokenPromise;
  })
  .then(() => {
    // Determine if customer domain already has Google Workspace
    const getCustomerPromise = resellerService.customers.get({
      customerId: CUSTOMER_DOMAIN
    }).then(() => {
      throw new Error('Customer already exists');
    }, resErr => {
      if (resErr.code === 404) {
        console.log('Domain available for Google Workspace creation');
      } else {
        throw resErr;
      }
    });

    return getCustomerPromise;
  })
  .then(() => {
    // Create customer resource
    const insertCustomerPromise = resellerService.customers.insert({
      requestBody: {
        customerDomain: CUSTOMER_DOMAIN,
        alternateEmail: 'marty.mcfly@gmail.com',
        postalAddress: {
          contactName: 'Marty McFly',
          organizationName: 'Acme Corp',
          postalCode: '10009',
          countryCode: 'US',
        }
      }
    }).then(({data}) => {
      console.log(data);
      return data;
    });

    return insertCustomerPromise;
  })
  .then(() => {
    // Create first admin user
    const insertUserPromise = directoryService.users.insert({
      requestBody: {
        primaryEmail: `marty.mcfly@${CUSTOMER_DOMAIN}`,
        name: {
          givenName: 'Marty',
          familyName: 'McFly',
        },
        password: 'Timecircuit88',
      }
    }).then(({data}) => {
      console.log(data);
      return data;
    });

    return insertUserPromise;
  }).then(() => {
    // Promote user to admin status
    const makeAdminPromise = directoryService.users.makeAdmin({
      userKey: `marty.mcfly@${CUSTOMER_DOMAIN}`,
      requestBody: {
        status: true
      }
    });

    return makeAdminPromise;
  })
  .then(() => {
    // Create subscription resource
    const insertSubscriptionPromise = resellerService.subscriptions.insert({
      customerId: CUSTOMER_DOMAIN,
      requestBody: {
        customerId: CUSTOMER_DOMAIN,
        skuId: '1010020027',
        plan: {
          planName: 'ANNUAL_MONTHLY_PAY',
        },
        seats: {
          numberOfSeats: 5,
        },
        renewalSettings: { // only relevant for annual plans
          renewalType: 'RENEW_CURRENT_USERS_MONTHLY_PAY',
        }
      }
    }).then(({data}) => {
      console.log(data);
      return data;
    });

    return insertSubscriptionPromise;
  })
  .then(() => {
    // Verify domain and designate domain owners
    const verifyDomainPromise = verificationService.webResource.insert({
      verificationMethod: 'DNS_TXT',
      requestBody: {
        site: {
          type: 'INET_DOMAIN',
          identifier: CUSTOMER_DOMAIN,
        },
        owners: [`marty.mcfly@${CUSTOMER_DOMAIN}`],
      }
    }).then(({data}) => {
      console.log(data);
      return data;
    });

    return verifyDomainPromise;
  })
  .catch(err => {
    console.error('Error:', err.message);
    if (err.code) {
      console.log('Error code:', err.code);
    }
    if (err.errors) {
      console.log('Details:', err.errors);
    }
  });