Versions Compared

Old Version 1

changes.mady.by.user Former user

Saved on

compared with

New Version 2

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Log in to https://console.developers.google.com/ with a Google account.

  2. Create a new project
  3. Once created, choose "Credentials"



  4. Click the button "Create credentials" and choose "OAuth client ID"


  5. Choose web application
  6. In the "OAuth consent screen" fill in at least the product name field, and Save.


  7. Select "web application" and give it a name.


  8. You will see your client ID and your client secret in a screen like this:


  9. Remember to enable Google+ API for your project.
    Image Added

    Image Added

  10. The next step is to configure these parameters in SSO Management Console. From Home, select the tab "Global Method Settings" and then click "New Method" at the bottom of the page:
    Image Added

  11. Choose OAuth 2.
     0 as method type. The method class will auto-fill and you don't have to edit it.
    Choose a method name, for instance google.auth2.1 (the dot and number "1" at the end is used to enumerate similar methods you will configure in the future)

  12. Press "OK" and the method will be created. Select the "OAuth 2.0" tab and edit the fields with the Google API information of your project:
    Image Added
    Once all the fields are filled in, press "Update"
  13. Go back to "Main" tab, tick "Enabled" box, and press "Update"

  14. Copy redirect URI from
    Image Added
    and paste it to the list of authorized redirect URIs in Google API console:
    Image Added

  15. From now on, you must configure the application.
  16. In this how-to article, we will connect to Sample SAML application.
  17. First we need to add some configuration on authentication method. Select tab "Sites" and add the site in which your application has been set up.
    Image Added

  18. Then in tab "Applications" add the application (sample, in this case).
    Image Added

  19. Finally, in tab "Groups" add the group of users that are allowed to access the application (e.g. google login users).
    Image Added

  20. Now it's time to configure your application. On the site navigator, select the site where your application is located (e.g. Applications site), go to tab "Application" and click on your application (e.g. sample).
    Image Added

  21. In "Allowed methods" tab, enable Google authentication method (google.oauth2.1) and press "Update."
    Image Added

  22. In "Allowed To" tab, add the group of users that are allowed to access the application (e.g. google login users).
    Image Added

  23. Now the configuration is done and a Google user should be able to log in to sample application (or any application you wish to).
  24. Open the application in a new web browser tab. http://localhost:8090/sample/
    Image Added
  25. When you press login, a Ubisecure log in page will prompt:
    Image Added
    Observe that if you hover the additional button under "Sign in With," this corresponds to Google OAuth 2.0 authentication.

  26. Click on the button and you will be redirected to Google log in page:
    Image Added

  27. Log in with your Google credentials and you will see a screen like this:
    Image Added

 

Info

General parameters for selected OAuth 2.0 Identity Providers

...