Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

ON THIS PAGE

Table of Contents
minLevel1
maxLevel7

What is Goggle SSO?

How to configure it

XCALLY Configuration

Please check in the General Settings the Single Sign-On property has been turned on:

  • From General Setting Menu, access the SSO section

  • Enable Google SSO

Image RemovedImage Added
  • In order to make the Google SSO work, XCALLY users (agents, users, admin) must have the proper Google account set as "email" in the Motion Staff section.

Image RemovedImage Added

XCALLY users must use the email confiugured in XCALLY to Login with Google.

If they are already logged into the Chrome browser, they need just to click on the red button.

Image RemovedImage Added


Google Configuration

  • Create a New Project

  • Create Credentials

  • Create a Google API Console project and client ID

    Access to the Google Developers Console (https://console.developers.google.com) with Google credentials

    Select or create

    Create a new

    projectSTAMP

    Google API Consoleproject

    • From the Navigation Menu, choose IAM & Admin and select Create a Project

    Image Added
    • Fill the required fields and click on Create

    Image Added

    Generate Credentials

    • Select the specific Project you want to generate the credentials for, in the Google Cloud top bar

    • From the Navigation Menu, choose APIs & Services and select Credentials

    Image Added

    Image Added

    Image Added

    • apiS & sERVICES

    • Click on the credentials

    STAMP SSO 1


    • Create CREDENTIALS

    STAMP SSO


    • Now you can add the credentials to access the APIs, click "Create credentials" and select "OAuth client ID"

    STAMP

    • SELECT WEB APPLICATION

    STAMP SSO

    REDIRECT URI : HTTPS… MOTION DOMAIN/API/callback + ADD uri

    Insert in the authorized URIs field the URI related your Motion server

    https://{{MOTION_IP}}/api/auth/google/callback

    STAMP SSO 6

    • ti da le credenziali (valori che devi inserire in ssh)

    CLiENT ID

    CLIENT SECRET

    URI


    Server Configuration

    VAI IN SSH

    ENTRA COME MOTION con comando :

    su motion

    poi comando:

    cd /var/opt/motion2

    poi

    nano .env

    STAMP DEL SERVER SSO 7

    • RIMUOVI Il cancelletto (uncomment) dei valori

    • inserisci i valori (tra le ' )

    Google ID è CLiENT ID

    CLIENT SECRET

    DOmani è URI

    • CRTL X per salvare

    • Y per dare ok per confermare modifiche

    • dai invio


    Ri-inizializza le variabili appena modificate con comando:

    npm run initialize

    Note

    questo comando riavvia i serivizi di motion !

    • Make sure that services are up by running pm2 list


    Motion server configuration

    edit the file /var/opt/motion2/server/config/environment/production.js

    and replace the following rows:

    Code Block
    languagejs
    google: {
            clientID: process.env.GOOGLE_ID || 'id',
            clientSecret: process.env.GOOGLE_SECRET || 'secret',
            callbackURL: (process.env.DOMAIN || 'https://YOUR_MOTION_IP') + '/api/auth/google/callback'
        }

    with the Google application ID, example:

    Code Block
    languagejs
       google: {
            clientID: process.env.GOOGLE_ID || '1234567890-abcdefghijklmnopqrstuvwxyz.apps.googleusercontent.com',
            clientSecret: process.env.GOOGLE_SECRET || 'abc-123456abcdefghijklmn',
            callbackURL: (process.env.DOMAIN || 'https://pbx2.xcally.com') + '/api/auth/google/callback'
        }


    restart the motion service to apply the change

    Code Block
    su motion
    pm2 restart motion2



    For any additional information please refer to the Official Google Documentation here