Custom Google Identity Provider

Last updated 03/11/2024

Step 1

Log in to the Google Cloud Console:

https://console.cloud.google.com/


Step 2

At the top of the page, click Select a Project, then New Project.


Step 3

  • For Project name, enter your organization’s name.
  • For Organization, select your organization.
  • For Location, select your organization.

Click Create

Step 3

Step 4

At the top of the page, change your project to the one you just created. If it's your first project, it should already be selected.

Step 4

Step 5

In the left menu (or under Quick access on the page), click on APIs & Services, then OAuth consent screen.


Step 6

  • For User Type, choose External.
  • Click Create.

Note: For the Google Social Provider, please ensure that the application type is External. This allows any Google user to authenticate and log in. Internal restricts login to your domain only.

Step 6

Step 7

  • For Application name, enter your organization’s name.
  • For Support email, enter your email address.
  • Leave the App Logo empty. A custom App Logo will require additional App validation when publishing your App. See Step 15 for more information.
  • Enter the remaining App domains fields for your organization as needed (please note that these can be changed later).
  • For Developer contact information, enter your email address.
  • Click Save and Continue.
Step 7

Step 8

  • Click Add or Remove Scopes.
  • Select or manually add email, profile, and openid to scopes.
  • Click Update.
  • Click Save and Continue back on the main page.
Step 8

Step 9

  • Click Add Users and add a user email address to test your app (optional).
  • Click Save and Continue.
Step 9

Step 10

At the bottom of the page, click Back to Dashboard. Then, in the left menu, click on Credentials.


Step 11

Click Create credentials, and then select OAuth client ID.

Step 11

Step 12

  • For Application type, select Web application.
  • For Name, enter your app name. We recommend entering your organization name.
  • For Authorized redirect URIs, enter:

    https://api.breadbutter.io/callback

  • Click Create.
Step 12

Step 13

In the dialog that appears, copy the Client ID and Client Secret for the Bread & Butter setup below, or download the JSON.


Step 14

Bread & Butter Setup:

  1. Go to https://app.breadbutter.io/sign-in/
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Go to Settings in the left menu.
  4. Click on Google under SSO Settings > Social Accounts.
  5. Select "Set Google for Production".
  6. Enter a custom name and description.
  7. Enter the Client ID from the Google setup steps above.
  8. Enter the Client Secret from the Google setup steps above.
  9. Click Save.
  10. Click the checkbox next to your new Google provider to enable it.
Step 14

Step 15

  • Go back to Google.
  • In the left pane, click on OAuth consent screen.
  • Click Publish App to make your app available to any user with a Google account.
Step 15

Step 16

You may still see breadbutter.io on the Google sign in window. To address this, you'll need to complete the Custom Domain Branding Setup



Don’t use Bread & Butter? Want to learn more about how Bread & Butter solves the four biggest problems facing marketers today? Book a demo and see how Bread & Butter is helping marketers make the most of their first-party data