security

No menu items for this category

Google SSO

Follow the sections in this guide to set up Google SSO.

Security requirements for your production environment:

  • DELETE the admin default account shipped by OM in case you had Basic Authentication enabled before configuring the authentication with Google SSO.
  • UPDATE the Private / Public keys used for the JWT Tokens. The keys we provide by default are aimed only for quickstart and testing purposes. They should NEVER be used in a production installation.
create-account

Create a New Account

Enter the Project name. Enter the parent organization or folder in the Location box. That resource will be the hierarchical parent of the new project. Click Create.

create-project

Create a New Project

  • Select the project you created above and click on APIs & Services on the left-side panel.
configure-oauth-consent
  • Click on the OAuth Consent Screen available on the left-hand side panel.
  • Choose User Type Internal.
select-user-type
  • Once the user type is selected, provide the App Information and other details.
  • Click Save and Continue.
save-app-information
  • On the Scopes Screen, Click on ADD OR REMOVE SCOPES and select the scopes.
  • Once done click on Update.
scopes-screen
  • Click Save and Continue.
save-edit-app-registration
  • Click on Back to Dashboard.
back-to-dashboard
back-to-dashboard
  • Once the OAuth Consent is configured, click on Credentials available on the left-hand side panel.
create-credentials
  • Click on Create Credentials
  • Select OAuth client ID from the dropdown.
cselect-outh-client-id
  • Once selected, you will be asked to select the Application type. Select Web application.
select-web-application

After selecting the Application Type, name your project and give the authorized URIs:

  • domain/callback
  • domain/silent-callback
authorized-urls
  • Click Create
  • You will get the credentials
get-the-credentials
  • Go to Credentials
  • Click on the pencil icon (Edit OAuth Client) on the right side of the screen
find-credentials
  • You will find the Client ID in the top right corner
find-clientid-and-secret

You will need to share the following information with the Collate team:

  • Client ID