Authenticating Google connectors

Overview
Copy

At Tray, we use the Google OAuth2 API to enable our customers to authenticate into Google applications when building workflows on the Tray Platform.

Due to particulars around how the API works, for certain Google services, you will need to whitelist the Tray app in the G-Suite admin interface. These services are:

Step 1 - Whitelisting the Tray app
Copy

Before proceeding with the authentication of your Google accounts, it's essential to whitelist the Tray OAuth2 application. This security measure ensures that only authentications created with the Tray app are permitted, enhancing the overall security of your Google accounts and applications.

Note: Whitelisting does not grant access to your Google accounts; it only allows authentications created with the Tray app.

Prerequisites: Ensure you have super admin permissions before following the instructions below.

Step-by-Step Guide:

To whitelist the Tray OAuth2 application, follow these specific instructions using the G-Suite admin interface:

  1. Log in to the G-Suite admin console.

  2. Navigate to Security > Access and data control > API controls from the menu bar.

  3. On the App access control page, click the MANAGE THIRD-PARTY APP ACCESS button.

  4. Click the Add app button on the App access control page and choose OAuth App Name or Client ID from the available options.

  5. Enter the Client ID: 597325623219-f23k7dhk377f8bvamo2e6klu1i37tco7.apps.googleusercontent.com in the search bar and click the SEARCH button.

  6. Under the App name select the tray app.

  7. Check the boxes for the client IDs you want to configure, then click Select.

  8. Select the organization you would like to configure access for and click CONTINUE.

  9. Choose the type of access the Tray app has to Google data and click CONTINUE.

  10. Review the configured settings

Upon successful configuration, the Tray app should be visible under the Configured apps list.

Step 2 - Creating the Authentications
Copy

Once you have whitelisted the Tray OAuth2 app, you will now be able to create authentications for Gmail, BigQuery and AdWords.

For each service you wish to use, please see the individual connector pages where you will find instructions on how to authenticate and manage the specific access scopes you wish to give (read/write files, edit metadata etc.)

Notes for Embedded customers
Copy

Custom OAuth apps
Copy

You can create a custom OAuth app in order to White-label the authentication dialog for your integrations.

In order to use Google OAuth in an Embedded Solution and to access Google users’ data, Google requires 3rd party applications to validate domain ownership with their Authentication Server (full google docs here). Therefore, we need you to provide a subdomain that you would like to use, for example: *.integrations.acme.com.

The required steps are outlined below:

Prerequisites
Copy

Google Setup: Part 1
Copy

Tray Setup
Copy

Google Setup: Part 2
Copy