跳到主要内容
版本:v2.0.0

Google Single Sign-on

  • Go to the Workspace Settings (⚙️) from the left sidebar in the ToolJet dashboard

    General Settings: SSO
  • Select SSO from sidebar and then select Google. Google login will be disabled by default,

    General Settings: SSO
  • Enable Google. You can see Redirect URL generated

    General Settings: SSO
  • Go to Google cloud console and create a project.

    General Settings: SSO
  • Go to the Google cloud console credentials page, and create an OAuth client ID

    General Settings: SSO
  • You'll be asked to select user type in consent screen. To allow only users within your workspace, select 'Internal', otherwise, select 'External'.

    General Settings: SSO
  • You'll be led to an app registration page where you can set OAuth scopes. Select 'Add or remove scopes' and add the scopes userinfo.email and userinfo.profile as shown in the image. This will allow ToolJet to store the email and name of the user who is signing in

    General Settings: SSO
  • Set the domain on which ToolJet is hosted as an authorized domain

    General Settings: SSO
  • Set the Redirect URL generated at manage SSO Google page under Authorised redirect URIs

    General Settings: SSO

Lastly, set the client id in google manage SSO page. This value will be available from your Google cloud console credentials page

The Google sign-in button will now be available in your ToolJet login screen, if you are not enabled Multi-Workspace.

Multi-Workspace

If you have enabled Multi-Workspace you can configure Google SSO as mentioned above, for setting default SSO for the instance use environment variable.

variabledescription
SSO_GOOGLE_OAUTH2_CLIENT_IDGoogle OAuth client id

Redirect URL should be <host>/sso/google