Follow the instructions below to generate your google credentials :

Setting up a project in Google Cloud Console

Create a new project in Google Cloud Console

Switch to the new project you just created.

For a completely new project you will need to setup the consent screen before setting the credentials.

First step after creating the project is to setup the OAuth Consent Screen.

  • For this navigate to the OAuth Consent Screen in the Sidebar of your Google Cloud Console :
  • Under the Oauth Overview screen, click on Get Started button.
  • Under the App Information Section, fill out the details :
    • Provide a Name for the app (For ex: Xyne)
    • Provide a User Support email (For ex: your-email@gmail.com)

  • Click on NEXT.

  • Under Audience section select Internal :

If you’re using personal email, you can choose External.

  • Click on NEXT.

  • Under the Finish section click on the checkbox to accept Google’s User Data Policy.

  • Click on CONTINUE.

  • Click on CREATE.

If you had previously chosen External in your Audience section, you can now navigate to Audience section again in the side menu and add your allowed external users in the Test Users section.

Setting Scopes :

  • Now navigate to the Data Access section on the left-side menu.
  • Under the Scopes section you’ll see the Add or Remove Scopes button. Click on that:
If you’re going for OAuth Authentication you can set all the scopes using this part of the OAuth Authentication Guide. If not you can add the scopes mentioned below.
  • For now in the scope section only add /auth/userinfo.email,/auth/userinfo.profile and openid, leave out the rest of it.
  • Click on Save.

This concludes the setting-up of your OAuth Consent Screen

Setting up the OAuth Credentials

  • Now, under Clients section in the menu on the sidebar,

  • Click on +CREATE CLIENT,

  • Under that you will see Create OAuth client ID option.

  • Add the type as Web Application, and give it a name (For ex: Xyne)

  • Add Authorized JavaScript origins as:

    • http://localhost:3001 for local or replace with http://<YOUR_AWS_EC2_IPv4_DNS> for production.

  • Add Authorized redirect URIs as:

    • http://localhost:3001/v1/auth/callback for local setup or https://<YOUR_AWS_EC2_IPv4_DNS>/v1/auth/callback for production.
    • http://localhost:3001/oauth/callback for local setup or https://<YOUR_AWS_EC2_IPv4_DNS>/oauth/callback for production.
Use http://localhost:3000 as authorized Javascript Origins. Use http://localhost:3000/v1/auth/callback and http://localhost:3000/oauth/callback when using dev-mode.

Click CREATE and make sure to save the Client ID and Client Secret for putting it in the .env of the application

With this you will now be able to successfully login to Xyne with your google account.

You can use the following Guides to add your scopes for your project:

Oauth Authentication

Authenticate with Oauth Account.

Service Account Authentication

Authenticate with Service Account.