Skip to main content

Example: Setting up Single Sign-On (SSO) from Google to Shakudo Keycloak

This guide provides detailed instructions on how to configure Single Sign-On (SSO) using Google as an identity provider (IdP) for Shakudo Keycloak.

Introduction

Single Sign-On allows users to authenticate once and gain access to multiple applications without logging in separately. Integrating Google with Shakudo Keycloak can enhance user experience by allowing them to authenticate using their Google accounts.

Prerequisites

  • Access to a Google account
  • Admin access to your Shakudo Keycloak instance

Step 1: Configuring Shakudo Keycloak

  1. Log into your Shakudo Keycloak admin console.
  2. Select the appropriate realm.
  3. Navigate to Identity Providers and select Google from the list.

img

  1. Copy the redirect URI, you will need this in the next step.

img

Step 2: Setting up a Google Project

  1. Go to the Google Cloud Console.
  2. Select or create a new project.
  3. Enable the Google+ API and OAuth Consent Screen.
  1. In the Google Cloud Console, navigate to the OAuth Consent Screen tab.
  2. Select the user type (External/Internal) and provide required information like App name, email, etc.
  3. Save and move to the next step.

Step 4: Setting up Credentials

  1. Under the Credentials tab, click on Create Credentials and select OAuth client ID.
  2. Configure the application type (usually Web Application).
  3. Enter your Authorized redirect URIs:
    • Obtain this from your Shakudo Keycloak setup panel. Typically, it looks like https://<keycloak-domain>/auth/realms/<realm-name>/broker/google/endpoint.
  4. Click Create to obtain the client ID and client secret.

img

Step 5: Configuring Shakudo Keycloak

img

  1. Enter the client ID and secret obtained from the Google Developer Console.
  2. Save your settings.

Step 6: Testing the Setup

  1. Navigate to the Login page provided by Shakudo Keycloak.
  2. Choose Sign in with Google.
  3. Follow the prompts to authenticate via Google.

Conclusion

Congratulations! You've successfully configured SSO from Google to Shakudo Keycloak. Your users can now authenticate using their Google accounts to access the applications managed by your Shakudo Keycloak instance.