Google OIDC

Hint
This article refers to configuring SSO login using Google Cloud and OIDC. Learn how to use OIDC to integrate your Google services with Buddy pipelines.

Follow these steps to add Google as the OIDC SSO provider for your workspace:

  1. Open Buddy SSO settings in one browser tab and switch to Open ID connectGoogle.
  2. In another tab, sign in to the Google Cloud Platform:
  3. Go to APIs & Services and click OAuth consent screen.
  4. Select the application's type click Create.
Tip
If you only want to log users from your organization, select 'Internal'.

Image loading...

  1. Provide app information:
  • app name
  • support email
  • other links and media required by your organization
  1. Set the authorized domain to the root domain of Buddy, i.e. https://buddy.works

Image loading...

  1. Proceed to the next step and select the scopes. Make sure to check:
  • userinfo.email (the ID of the user in Buddy)
  • openid

Image loading...

  1. The next step lets you test the settings on selected email addresses. If everything's working fine, click Save and continue to publish the app.

Image loading...

  1. Check the summary and go back to the dashboard.
  2. Go to Credentials and click + Create credentialsOAuth client ID

Image loading...

  1. Configure the ID as follows:
  • set the type to Web application
  • enter the name
  • click + Add URI and paste the Callback URL from Buddy's SSO settings

    Image loading...

  1. Click Create and copy the client ID and client secret

Image loading...

  1. Switch back to Buddy and fill the inputs:
  • Issuer URLhttps://accounts.google.com
  • Client ID → the value of Google's client ID
  • Client secret → the value of Google's client secret
  1. Click Test configuration and enable SSO on success.
  2. Sign in to your Google account to save the SSO configuration.
Last update:
Sep 23, 2024