Google account authentication (OAuth 2.0) can be enabled for logging into the HelpMaster web portal. Before you can use Google account authentication, you must first configure your Google Cloud Platform (developer admin) and Google Workspace account settings. HelpMaster utilizes personal OAuth 2.0 account access via an application project. A Google App Project, Consent Screen, and Client ID / Secret need to be created along with granting access to the Gmail API.
Previous Gmail account access
If you have already created a Google Service Account or granted personal Gmail account access via the Gmail API, then you may utilize your existing Google Project and Consent Screen / Application. In this case you can skip steps 1 and 2 below and start at step 3 within your existing Google project.
Security Warning!With Internal User Type (Step 2.3 below) Granting OAuth 2.0 access to the Gmail API will also grant unlimited access (Send As, Read, Move, Delete etc…) to the user account mailbox (Gmail) being authenticated and any user on the selected Google domain will have access to this app via OAuth 2.0. There is a method for obtaining granular permissions control but it only applies to External user types and only after the app (project) has been verified by Google.
Step 1 - Create a New Project Resource
- Navigate to the Google Cloud Platform > Manage Resources > Manage resources screen
- Select the + Create Project option, enter a Project name (e.g. HelpMaster Web Login), select a Location, and click the Create button
- Select your new project from the pop-up window.
Step 2 - Create an OAuth Consent Screen
- Navigate to the Google Cloud Platform > APIs & Services > OAuth consent screen screen
- Select your HelpMaster Web Login project created above
- Select the OAuth consent screen from the navigation pane. Choose the User Type - Internal, followed by clicking the Create button
- Enter the consent screen details inc. App information, App domain, and Developer contact information. Click the SAVE AND CONTINUE button
- This will take you to the Scopes screen which does not apply to User Type - Internal, click the SAVE AND CONTINUE button
- A summary of your new OAuth consent screen will now be presented. Check the details and EDIT if necessary or click Back to dashboard
Step 3 - Create an OAuth 2.0 Client ID and Secret
- Navigate to the Google Cloud Platform > APIs & Services > Credentials screen
- Select your HelpMaster Web Login project created in step 1
- Click the + CREATE CREDENTIALS button and select the OAuth client ID option
- From the Application type field choose Web application and enter a descriptive Name e.g. “HelpMaster Web”
- Under Authorised redirect URIs click the + Add URI button. Enter your web portal public uri followed by /signin-google e.g. “https://helpdesk.wizbangwidgets.com/signin-google"
- Click the Create button and leave this screen open for copying to HelpMaster in the next step
- You may also download the JSON file and save it to a secure location
Step 4 - Add the OAuth 2.0 Client ID and Secret to HelpMaster
- Open the HelpMaster Desktop and navigate to Administration toolbar > System Administration icon > System Integration section > Google navbar > Google external authentication for the web portal section
- Paste Your Client ID from step 3 into the HelpMaster Application (client) ID field
- Paste Your Client Secret into the HelpMaster Client secret field
- Click OK to save the Google provider details to HelpMaster
Revoking Google external login
- Login to the HelpMaster web portal
- From the My Account drop-down select Account settings followed by External logins
- Click on the Remove button next to the Google registered login
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.