SSO with Google

This article will run you through how to set up Single Sign-On with Google and Gnatta.

Setup in Google Console

• In your cloud account console, select or create the project you want to configure the Gnatta integration with.

• Go to APIs and Services.

• Go to Credentials.

• Click Create Credentials.

Open

• Select OAuth Client ID.

• Select Web Application and give the client a name (e.g Gnatta).

Open

• Make note of your Client ID and Secret.

Create an SSO Provider in Gnatta

• When logged into your Gnatta domain, open the Configuration menu and click Authentication.

• On the SSO Providers section, select the Add button in the header.

• To create your provider in Gnatta you will need details from the Application you’ve just created in Okta. In Okta navigate to your application and the General tab. 

• In Gnatta, give the provider a Display Name. 

• The Authority URL will be https://accounts.google.com/o/oauth2/v2/auth

• Next, you need your Client ID and Client Secret, these are found on your application in Google.

• Once these are all added to your SSO provider in Gnatta, select the Save button in the header. 

• The SSO provider should appear in your provider list. Please select your newly created provider. 

• Once loaded you will now be able to copy the Redirect URI to update in Google.

• You will find this under the Credentials tab in your google console, if you select your application you will then see the input for redirect URLs.

• Once you added this Save your provider in Gnatta. 

User Permission Management

With our integration with Google permission control is managed in Gnatta, this requires an advanced setting to be enabled and how to do this is below.

• Go to the provider you have set up in Gnatta and select it.

• Select the three-dot menu and click Show Advanced.

• Then turn on the toggle to disable role mapping as shown below.

Then you will be able to set the permissions of your users in Gnatta and these will persist on each login/authentication.