Custom Google Identity Provider

Step 1

Log in to the Google Cloud Console:

Step 2

In the left pane, click on APIs & Services, then OAuth consent screen.

Step 3

  • For Application type, choose Public.
  • For Application name, enter your organization’s name.
  • For Support email, enter your email address.


Note: For the Google Social Provider, please ensure that the application type is Public. This allows any Google user to authenticate and log in. Internal restricts login to your domain only.

Step 3

Step 4

  • For Scope, add email, profile, and openid.
  • For Authorized domains, add:

  • Enter the remaining fields for your organization as needed (please note that these can be changed later).
  • Click Save.
Step 4

Step 5

In the left pane, click on Credentials.

Step 6

Click Create credentials, and then select OAuth client ID.

Step 6

Step 7

  • For Application type, select Web application.
  • For Name, enter your app name. We recommend entering your organization name.
  • For Authorized JavaScript origins, enter:

  • For Authorized redirect URIs, enter:

  • Click Create.
Step 7

Step 8

In the dialog that appears, take note of the Client ID and Client Secret for the LogonLabs setup below.

Step 9

LogonLabs Setup:

  1. Go to
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Navigate to Default Rules (or Domain Rules and open/create a domain module).
  4. Click on the Google Social Provider icon.
  5. Click Create New to start creating your custom Google provider.
  6. Enter a custom name and description.
  7. Enter the Client ID from the Google setup steps above.
  8. Enter the Client Secret from the Google setup steps above.
  9. Click Add.
  10. Click the checkbox next to your new Google provider to enable it.
Step 9