How To Set Up Your Own Google App (OpenID Connect)

Step 1

Log in to the Google Cloud Console:

https://console.cloud.google.com/


Step 2

At the top of the page, click Select a Project, then New Project, if you have not already created a Project.


Step 3

  • For Project name, enter your organization’s name.
  • For Organization, select your organization.
  • For Location, select your organization.

Click Create

Step 3

Step 4

In the left pane, click on APIs & Services, then OAuth consent screen.


Step 5

  • For User Type, choose Internal.
  • Click Create.
Step 5

Step 6

  • For Application type, choose Internal.
  • For Application name, enter your organization’s name.
  • For Support email, enter your email address.

Note: For the Google Enterprise Provider, please ensure that the application type is Internal. This restricts login to your domain only, whereas “Public” will allow any Google user to log in.

Step 6

Step 7

  • For Scope, add email, profile, and openid.
  • For Authorized domains, add:logonlabs.com
  • Enter the remaining fields for your organization as needed (please note that these can be changed later).
  • Click Save.
Step 7

Step 8

In the left pane, click on Credentials.


Step 9

Click Create credentials, and then select OAuth client ID.

Step 9

Step 10

  • For Application type, select Web application.
  • For Name, enter your app name. We recommend entering your organization name.
  • For Authorized JavaScript origins, enter:https://api.logonlabs.com
  • For Authorized redirect URIs, enter:https://api.logonlabs.com/callback
  • Click Create.
Step 10

Step 11

In the dialog that appears, take note of the Client ID and Client Secret.


Step 12

LogonLabs Setup:

  1. Go to logonlabs.com
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Navigate to Providers, then to Default Rules (or Domain Rules and open/create a domain module).
  4. Click on the Google button under Enterprise Identity Providers.
  5. Choose OpenID Connect for the protocol.
  6. Enter a name.
  7. Enter a description (optional).
  8. In the Login URL field, enter:https://accounts.google.com/o/oauth2/v2/auth
  9. In the Token URL field, enter:https://oauth2.googleapis.com/token
  10. Enter the Client ID from the Google OAuth setup steps above.
  11. Enter the Client Secret from the Google OAuth setup steps above.
  12. Click Save & close.
  13. Enable Google by clicking the new entry in the Google Identity Providers list.
Step 12