Connect Apps to Google

The Google social connection allows users to log in to your application using their Google profile.

By default, Auth0 automatically syncs user profile data with each user login, thereby ensuring that changes made in the connection source are automatically updated in Auth0. Optionally, you can disable user profile data synchronization to allow for updating profile attributes from your application.

Create Google credentials

Configure your OAuth consent screen and create credentials in the Google Developer Console using Google's Setting up OAuth 2.0 documentation. During this process, Google will generate a Client ID and Client Secret for your application; make note of these.

While setting up your OAuth consent screen, use the following settings:

Field Value to Provide
User Type Select External.
Application Type Select Public.
Authorized domains auth0.com

If your application requests sensitive OAuth scopes or uses a custom image, Google will limit it to 100 logins until the OAuth consent screen is verified. Verification can take several days. To learn more about sensitive scopes, see Google's OAuth 2.0 Scopes for Google APIs documentation. To pass verification you will need to prove ownership of all Authorized domains you specify on Google's OAuth consent screen. If you're using custom domains, use your custom domain instead of auth0.com.

While setting up your credentials, use the following settings:

Field Value to Provide
Application type Web application
Authorized JavaScript origins https://YOUR_DOMAIN
Authorized redirect URIs https://YOUR_DOMAIN/login/callback

Find your Auth0 domain name

If your Auth0 domain name is not shown above and you are not using our custom domains feature, your domain name is your tenant name, your regional subdomain (unless your tenant is in the US region and was created before June 2020), plus.auth0.com. For example, if your tenant name were exampleco-enterprises, your Auth0 domain name would be exampleco-enterprises.us.auth0.com and your redirect URI would be https://exampleco-enterprises.us.auth0.com/login/callback. (If your tenant is in the US and was created before June 2020, then your domain name would be https://exampleco-enterprises.auth0.com.)

If you are using custom domains, your redirect URI will have the following format: https://<YOUR CUSTOM DOMAIN>/login/callback.

Create and enable connection in Auth0

Set up the Google social connection in Auth0. Make sure you have the Client ID and the Client Secret generated.

Besides the standard social connection settings, the Google social connection configuration includes the following:

Setting Description
Allowed Mobile Client IDs Client IDs of any mobile apps that are allowed to use the connection.

Test connection

You're ready to test your connection.