Skip to main content
You can set up Single Sign-on (SSO) with Google for your team. This page helps you create the Google OAuth/OIDC application Ona needs. You will use the resulting Client ID, Client Secret, and Issuer URL in Ona. For the full organization-side setup, see Single sign-on (SSO).

Prerequisites

  • access to create new API Credentials in your Google Cloud project
  • admin access to your Ona organization login settings

Create an OAuth/OIDC application

The OAuth/OIDC application allows you to integrate with Ona.
  1. Navigate to your Google Cloud Console > API Credentials.
  2. Select Create Credentials, and choose OAuth Client ID.
  3. Configure your OAuth Client ID by pasting the Callback URL shown in Ona into Google’s Authorized redirect URI field.
  4. Obtain the Client ID & Client Secret and input these into your Ona Setup page.
  5. Use Google’s global Issuer URL: https://accounts.google.com
  6. Continue with the SSO configuration in Ona and use Save & Test to verify the login flow

Values to enter in Ona

When you return to Ona, enter:
  • Client ID from Google
  • Client Secret from Google
  • Issuer URL: https://accounts.google.com
Then test the configuration before rolling it out to your team.

Google-specific notes

  • Copy the redirect URI from Ona rather than retyping it. This avoids callback mismatches.
  • If you use domain-based login in Ona, make sure the relevant email domain is also verified and associated with the Google login provider in Ona.
  • If testing fails, the most common cause is an incorrect redirect URI or a mismatch between the Google app and the provider configuration in Ona.

Next steps