- Follow the instructions on OpenID Connect
- Create a project in the Google API Console
- Choose a project name (e.g. Airlock IAM Integration)
- Create a Consent Screen page
- Choose an application name (e.g. Airlock IAM)
- Enter authorized domains (e.g. example.com)
- Create credentials for an OAuth 2.0 client ID on the Credentials page
- Choose a name (e.g. Airlock IAM Client)
- Enter authorized redirect URIs (e.g. https://iam.example.com/auth-login/oauth2-client)
- From the newly created credentials obtain OAuth 2.0 credential information
- Client ID
- Client secret
For local tests: make sure the redirect URI field lists http://localhost:8080/auth-login/oauth2-client