Custom Google Identity Provider

Step 1

Log in to the Google Cloud Console:

https://console.cloud.google.com/


Step 2

At the top of the page, click Select a Project, then New Project, if you have not already created a Project.


Step 3

  • For Project name, enter your organization’s name.
  • For Organization, select your organization.
  • For Location, select your organization.

Click Create

Step 3

Step 4

In the left pane, click on APIs & Services, then OAuth consent screen, then select your project.


Step 5

  • For User Type, choose External.
  • Click Create.

Note: For the Google Social Provider, please ensure that the application type is External. This allows any Google user to authenticate and log in. Internal restricts login to your domain only.

Step 5

Step 6

  • For Application name, enter your organization’s name.
  • For Support email, enter your email address.
  • For Developer contact information, enter your email address.
  • For Authorized domains, add:  logonlabs.com
  • Enter the remaining fields for your organization as needed (please note that these can be changed later).
  • Click Save and Continue.
Step 6

Step 7

  • Click Add or Remove Scopes.
  • Select or manually add email, profile, and openid to scopes.
  • Click Update.
  • Click Save and Continue.
Step 7

Step 8

  • Click Add Users and add a user email address to test  your app.
Step 8

Step 9

In the left pane, click on Credentials.


Step 10

Click Create credentials, and then select OAuth client ID.

Step 10

Step 11

  • For Application type, select Web application.
  • For Name, enter your app name. We recommend entering your organization name.
  • For Authorized JavaScript origins, enter:https://api.logonlabs.com
  • For Authorized redirect URIs, enter:https://api.logonlabs.com/callback
  • Click Create.
Step 11

Step 12

In the dialog that appears, take note of the Client ID and Client Secret for the LogonLabs setup below.


Step 13

LogonLabs Setup:

  1. Go to logonlabs.com
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Navigate to Providers, then to Default Rules (or Domain Rules and open/create a domain module).
  4. Click “Sign in with Google” button.
  5. Select “Set Google for Production”.
  6. Enter a custom name and description.
  7. Enter the Client ID from the Google setup steps above.
  8. Enter the Client Secret from the Google setup steps above.
  9. Click Save & Close.
  10. Click the checkbox next to your new Google provider to enable it.
Step 13

Step 14

  • Log in to your app using the test user added in step 8.
  • In the left pane, click on Credentials.
  • Click “Publish App” to make your app available to any user with a Google account.
Step 14