Configuring a Google identity provider#
To enable login with Google you first have to create a project and a client in the Google Developer Console.
-
Log in to the Google Developer Console
-
Click the
Create Project
button. Use any value forProject name
andProject ID
you want, then click theCreate
button. Wait for the project to be created (this may take a while). Once created you will be brought to the project's dashboard. -
Google requires some basic information about the product before creating any secrets for it. For a new project, you have first to configure
OAuth consent screen
. Fill inOAuth consent screen
details. Keep the Application TypeInternal
. Add theemail
,profile
andopenid
in the allowed Scopes. Under Authorized domains addkubeapp.cloud
along with any hosted domain(s) which you want to allow. e.g if Authorized domain isxyz.com
thenbob@xyz.com
will be allowed -
Then navigate to the
APIs & Services
section in the Google Developer Console. On that screen, navigate toCredentials
administration. selectOAuth client ID
under theCreate credentials
button. -
You will then be brought to the
Create OAuth client ID
page. SelectWeb application
as the application type. Specify the name you want for your client. InRedirect URI
(This will be provided by Stakater Support) click the Create button. -
After you click Create you will be brought to the
Credentials
page. Click on your new OAuth 2.0 Client ID to view the settings of your new Google Client. You will need to obtain theclient ID
andsecret
Send these to Stakater Support.
Items provided by Stakater Support#
Redirect URIs
Items to be provided to Stakater Support#
Client ID
Secret
Authorized Domain
Users of this Google domain will be able to access the cluster