Skip to content

Google Service Authentication

This document describes how to allow Google API's server to server access for emakin rest clients.

Creating a Service Account

Before allowing the access you need to register emakin as application. This step is already configured for cloud configuration and required only for on-premises.

  1. Login to https://console.cloud.google.com

  2. Please select "Service Accounts" from "IAM & Admin" menu.

  3. Click on "Create Service Account" button and specify the name of service account. (Ex: emakin)

  4. Check "Furnish a new private key" and "Enable G Suite Domain-Wide Delegation"

  5. Please select "Key type" as P12

  6. Please note the "Service Account Id" for later use.

  7. Click on Create Account to download p12 file.

Configuring Emakin for Google Login Service

  1. Start a new Edit Domain task from Administration menu.

  2. Expand the Google Login Service

  3. Enter the registered google credentials.

  4. In service account key; you can specify in following formats;

    1. If certificate is stored in local server

      1. FILE;\;\

    2. If you dont have local access to server you can also specify with

      1. BASE64;\;\

      2. URL;\;\

Configuring Emakin for Google Drive Integration

  1. If you want to enable Google Drive; in fileServices add new element as below;
1
2
3
4
5
<fileServices>
 <add clientType="Desktop" />
 <add clientType="Webcam" />
 <add clientType="GoogleDrive" scope="https://www.googleapis.com/auth/drive"/>
</fileServices>
  1. If you want to allow offline access to API without user interaction, please add the "offline" scope with space separated.