Google

To configure Google as an OAuth 2.0 provider, you need to set up OAuth 2.0 in Google and add the necessary configurations to your server configuration file.

For more details, refer to the Google documentation.

When configuring Google authentication, you need to set up a redirect URI. Use the following value: https://<my-domain.com>/api/login/authenticated.

Configure Google in your server configuration file

After adding IDE Services to Google, you need to update your server configuration file:

            tbe:
                auth:
                    login-url: "https://accounts.google.com/o/oauth2/auth"
                    token-url: "https://oauth2.googleapis.com/token"
                    jwt-certs-url: "https://www.googleapis.com/oauth2/v3/certs"
                    client-id: "your_identifier"
                    client-secret: "your_password"
                    root-admin-emails:
                        - "toolbox.admin@example.com"
        

login-url

Provide a URL for logging in via Google.

You can obtain this URL by requesting the Well-known configuration at https://accounts.google.com/.well-known/openid-configuration.

token-url

Provide a URL for obtaining an authorization token on Google's side.

You can obtain this URL by requesting the Well-known configuration at https://accounts.google.com/.well-known/openid-configuration.

jwt-certs-url

Specify a URL to the JSON Web Key (JWK) set that is used to validate JSON Web Tokens (JWT).

You can obtain this URL by requesting the Well-known configuration at https://accounts.google.com/.well-known/openid-configuration.

client-id

Specify the public identifier for IDE Services used in Google.

client-secret

Specify the value of the client secret for IDE Services that you obtained in Google.

root-admin-emails

List emails of users that will receive admin rights.

Last modified: 15 July 2024