Prerequisites

• Google Cloud account with administrative access
• Thinfinity Workspace installed and accessible
  

Step 1: Create a Google Cloud Project for Thinfinity Workspace

1. First, log into your Google Cloud Console or create a new account if necessary.
   
2. Go to the APIs & Services tab and click Create Project.
   
   

   
   

   
   
   
   
3. Complete the form and then click Create.
   
   
   
   
   
   
4. Go to the Credentials tab and click on the CONFIGURE CONSENT SCREEN button.
   
   
   

   
   
   
   
5. In the OAuth consent screen choose the User Type (Internal/External).
   
6. Complete the next form of OAuth consent screen, set the Scopes for your app and finish the process.[add domian]
   
   

   

   
   
   
7. Next, go to the Credentials tab, click +Create Credentials button, and select OAuth client ID.
   
   
   
   
   
   
   
8. Now, select Web Application as the Application type and name it.
   
9. In the Authorized JavaScript origins, enter the URL or external IP of Thinfinity Workspace and on the Authorized redirect URIs, enter the same URL or external IP adding "/google" at the end, and click Create.
   
10. Next, note down the Client ID, and Client Secret from your Google Cloud OAuth project settings. These will be needed to configure the SSO in Thinfinity Workspace.

Step 1: Configure Thinfinity Workspace

1. 
   
   Open the Thinfinity Configuration Manager, navigate to the Authentication tab and, below that, select the Methods tab. Then click Add > OAuth 2.0 > Google.
   
   

   

   
   
   
   
2. Add the Google Cloud OAuth Client ID, and Client Secret into the corresponding fields in the General tab of the Authentication Method Settings.
3. Select the Server tab and complete the field Custom redirect URL in this format "https://<your-workspace-url>:<port>/Google", the rest of the parameters will be already completed, click OK to finish.
4. Go to the Authentication ID Mask field in the Mappings tab, and click Add.
   
5. Enter the email address of the user Google Cloud on the ID Pattern field you want to validate, then press OK. 
   
6. Go to the Associated field, click Add, and search for the user in Active Directory and submit it. When finished, click Ok and apply the changes.
   
7. Attempt to log in to Thinfinity Workspace by clicking on the Google button. Verify that you are redirected to the Google login page and can authenticate successfully.

Remember to test thoroughly in a non-production environment before deploying to production.

If you have any further inquiries or need additional support, please do not hesitate to reach out to us. Our team is always available to help address any questions or concerns you may have.