Google SSO

Steps to configure authentication between ChaosSearch and Google Workspace

Google Workspace (formerly GSuite and Google Apps) is a service from Google LLC that provides a collection of standard user productivity applications like email, word processing, spreadsheets, user authentication, security, and similar tools. Through its Auth0 broker, ChaosSearch supports SSO integration with Google Workspace, which allows your users with Google accounts to use SP-initiated authentication from the ChaosSearch login page.

The Auth0 process to set up Google SSO authentication is as follows:

  1. ChaosSearch will create an SSO connection for your Google IdP in the Auth0 broker. ChaosSearch Customer Success will provide you with the following information:
  • Authorized JavaScript origins:
  • Authorized redirect URI: https://YOURDOMAIN.auth0.com/login/callback as an example
  1. The customer Google administrator must follow the Google Authentication Setup Steps to create Google credentials. During this process, Google generates a Client ID and Client Secret for your application. Give the ID and secret values to ChaosSearch Customer success because they are needed for ChaosSearch to complete the Auth0 connection for your Google IdP.

  2. ChaosSearch will complete the SSO connection for your Google IdP in the Auth0 broker.

  3. The Google administrator must set up the OAuth Consent screen and include the following settings:

  • In the User Type field, select External.
  • In the Application Type field, select Public.
  • In the Authorized domains field, type auth0.com.

πŸ“˜

Review the steps

It is recommended to review the [Google/Gmail topic] (https://marketplace.auth0.com/integrations/google-social-connection) to learn about the configuration steps. The process to create an SP-initiated authentication with Google Workspace is complicated; contact ChaosSearch Customer Success if this is the SSO implementation that you want to use.

Google Authentication Setup Steps

While logged in to your Google account, go to the GCP > APIs & Services > Credentials page.

  1. You might need to click Credentials in the left menu to display the Credentials page.
  2. Click Create credentials and select OAuth client ID from the menu.
  3. Select Web application.
  4. Under Restrictions, enter the following information:
  • Authorized JavaScript origins: Provided by your ChaosSearch Customer Success Engineer
  • Authorized redirect URI: for example, https://YOURDOMAIN.auth0.com/login/callback
  1. Click Create.

Provide the Client ID and Client Secret from the procedure above to your Customer Success Engineer to complete the configuration for Google.