Configuring a Google identity provider
To enable login with Google you first have to create a project and a client in the Google Developer Console.
- Log in to the Google Developer Console
- Click the
Create Projectbutton. Use any value for
Project IDyou want, then click the
Createbutton. Wait for the project to be created (this may take a while). Once created you will be brought to the project’s dashboard.
Google requires some basic information about the product before creating any secrets for it. For a new project, you have first to configure
OAuth consent screen. Fill in
OAuth consent screendetails. Keep the Application Type
Internal. Add the
openidin the allowed Scopes. Under Authorized domains add
kubeapp.cloudalong with any hosted domain(s) which you want to allow. e.g if Authorized domain is
firstname.lastname@example.org be allowed
Then navigate to the
APIs & Servicessection in the Google Developer Console. On that screen, navigate to
OAuth client IDunder the
You will then be brought to the
Create OAuth client IDpage. Select
Web applicationas the application type. Specify the name you want for your client. In
Redirect URI(This will be provided by Stakater Support) click the Create button.
- After you click Create you will be brought to the
Credentialspage. Click on your new OAuth 2.0 Client ID to view the settings of your new Google Client. You will need to obtain the
secretSend these to Stakater Support.
Items provided by Stakater Support
Items to be provided to Stakater Support
Authorized DomainUsers of this google domain will be able to access the cluster