Configuring Keycloak to use Google Identity Provider - metadatacenter-attic/cedar-docs GitHub Wiki

Create a Google Application

Move to Google APIs Portal: https://console.developers.google.com and define a new API.

Now click on the Create Credentials button and choose OAuth Client ID

In the following window, select Web application as Application type and, in the Authorized Redirect URI, you have to specify your Keycloak URI, relative to your Realm, in our case https://auth.metadatacenter.org/auth/realms/CEDAR/broker/google/endpoint

In the end, when you save, the ClientID and Secret will be generated (Keep it safe!)

Enable Google+ APIs

Go to: https://console.developers.google.com/ Select: Library Select: Google+ API Click "Enable" on the top of the page

Create an Identity Provider in Keycloak

Switch back to the Keycloak Administration console and click on Identity Providers. From there, in the combobox located in the top right corner, choose to Add Provider and as Social select "Google". Here you will have to insert the ClientID and Secret that was just generated: