Contents x
OAuth Settings
  • 04 Feb 2021
  • 1 Minute to read
  • Print
  • Dark
    Light
Contents
  This documentation version is deprecated, please click here for the latest version.

OAuth Settings

  • Updated on 04 Feb 2021
  • 1 Minute to read
  • Print
  • Dark
    Light
Article summary

Overview

OAuth is an open standard for providing secured delegated access. In short, Decisions can take actions or access resources from a server on behalf of the user, without them having to share their credentials. It does this by allowing the identity provider (IdP) to issue tokens to Decisions with the user’s approval.

Setting up OAuth 2.0

Before configuring settings in Decisions, follow these instructions from Google to obtain a client ID and client secret.

Before the application can use the Google OAuth 2.0 authentication system for user login, a project must be set up in the Google API Console to obtain OAuth 2.0 credentials, then have a redirect URL designated.

Obtain OAuth 2.0 credentials

OAuth 2.0 credentials are required, which includes a client ID and client secret to authenticate users and gain access to Google's APIs.

To find the project client ID and client secret, use the steps listed below.

  1. Select an existing OAuth 2.0 credential or open the Credentials page.
  2. If this has not been done already, create the project OAuth 2.0 credentials by selecting Create credentials > OAuth client ID, and providing the information needed to create the credentials.
  3. Look for the Client ID in the OAuth 2.0 client IDs section. For details, click the client ID.

Set a redirect URL

The redirect URL that is set in the API Console determines where Google sends responses for the authentication requests.

To find the redirect URLs for the OAuth 2.0 credentials, use the steps listed below.

  1. Open the Credentials page in the API Console.
  2. If this has not been done already, create the OAuth 2.0 credentials by clicking Create credentials > OAuth client ID.
  3. After the credentials are created, view or edit the redirect URLs by clicking the client ID (for a web application) in the OAuth 2.0 client IDs section.

Once the client ID and client secret are obtained, follow the instructions in the OpenID Integration documentation. Use the values from Other Allowed Endpoints and the Discovery URL listed below.

All callback URLs should be directed toward the HandleTokenResponse.aspx location on the Decisions App Server.

Other Allowed Endpoints

https://oauth2.googleapis.com
https://openidconnect.googleapis.com
https://www.googleapis.com

Discovery URL

https://accounts.google.com/.well-known/openid-configuration

Was this article helpful?
What's Next
Decisions
Resources
Organization
Connect