What is Goggle SSO?
How to configure it
XCALLY Configuration
Please check in the General Settings the Single Sign-On property has been turned on:
From General Setting Menu, access the SSO section
Enable Google SSO
In order to make the Google SSO work, XCALLY users (agents, users, admin) must have the proper Google account set as "email" in the Motion Staff section.
XCALLY users must use the email confiugured in XCALLY to Login with Google.
If they are already logged into the Chrome browser, they need just to click on the red button.
Google Configuration
Create a New Project
Create Credentials
Create a Google API Console project and client ID
Access to the Google Developers Console (https://console.developers.google.com) with Google credentials
Select or createCreate a new
projectSTAMPGoogle API Consoleproject
From the Navigation Menu, choose IAM & Admin and select Create a Project
Fill the required fields and click on Create
Generate Credentials
Select the specific Project you want to generate the credentials for, in the Google Cloud top bar
From the Navigation Menu, choose APIs & Services and select Credentials
apiS & sERVICES
Click on the credentials
STAMP SSO 1
Create CREDENTIALS
STAMP SSO
Now you can add the credentials to access the APIs, click "Create credentials" and select "OAuth client ID"
STAMP
SELECT WEB APPLICATION
STAMP SSO
REDIRECT URI : HTTPS… MOTION DOMAIN/API/callback + ADD uri
Insert in the authorized URIs field the URI related your Motion server
https://{{MOTION_IP}}/api/auth/google/callback
STAMP SSO 6
ti da le credenziali (valori che devi inserire in ssh)
CLiENT ID
CLIENT SECRET
URI
Server Configuration
VAI IN SSH
ENTRA COME MOTION con comando :
su motion
poi comando:
cd /var/opt/motion2
poi
nano .env
STAMP DEL SERVER SSO 7
RIMUOVI Il cancelletto (uncomment) dei valori
inserisci i valori (tra le ' )
Google ID è CLiENT ID
CLIENT SECRET
DOmani è URI
CRTL X per salvare
Y per dare ok per confermare modifiche
dai invio
Ri-inizializza le variabili appena modificate con comando:
npm run initialize
Note |
---|
questo comando riavvia i serivizi di motion ! |
Make sure that services are up by running
pm2 list
Motion server configuration
edit the file /var/opt/motion2/server/config/environment/production.js
and replace the following rows:
Code Block | ||
---|---|---|
| ||
google: { clientID: process.env.GOOGLE_ID || 'id', clientSecret: process.env.GOOGLE_SECRET || 'secret', callbackURL: (process.env.DOMAIN || 'https://YOUR_MOTION_IP') + '/api/auth/google/callback' } |
with the Google application ID, example:
Code Block | ||
---|---|---|
| ||
google: { clientID: process.env.GOOGLE_ID || '1234567890-abcdefghijklmnopqrstuvwxyz.apps.googleusercontent.com', clientSecret: process.env.GOOGLE_SECRET || 'abc-123456abcdefghijklmn', callbackURL: (process.env.DOMAIN || 'https://pbx2.xcally.com') + '/api/auth/google/callback' } |
restart the motion service to apply the change
Code Block |
---|
su motion pm2 restart motion2 |
For any additional information please refer to the Official Google Documentation here