OAuth Configuration
- Use an existing Client, or create a new OAuth 2.0 Client by navigating to https://console.developers.google.com (with the correct Google account and project selected) and select the Credentials link. Click Create credentials to generate a new Client ID.
-
Set
console.auth_google_keyandconsole.auth_google_secretto the Client ID and Client secret of the application.
Here is a sample configuration file:
console:
#...
auth_google_key: ********************
auth_google_secret: ******************-
Add the Capsule8 callback to the Authorized redirect URIs list in the Google Client ID settings.
It should be in the format
https://<base-domain>/sessions/google/callback.
Verifying Configuration
When the required variables are set, the Capsule8 Console login screen will include the option to authenticate with a 3rd party provider.
Restricting access
Google lets administrators restrict an application to users in the organization.
By default, any successfully authenticated user can access the console. To restrict users by email domain, add desired domain(s) to the whitelist. Separate multiple domains with a space.
For example: auth_domain_whitelist=“my-company.com”.
Comments
0 comments
Please sign in to leave a comment.