You can use Google SSO to authenticate your apps instead of or in addition to built in local accounts. Currently in order for Google SSO to work, a local account record needs to be explicitly created for each user. This means that a user must register or be created by an administrator prior to being able to gain access to the app. THIS IS BY DESIGN. In the future, an option will be created to allow for the local account record to be automatically generated at first login.
Register your app with Google using the Google Cloud Console.
Great instructions on how to do this can be found here: https://youtu.be/G4BBNq1tgwE?si=Jgisv680APgZuBi1&t=1067. This video is by Israel Quiroz who is listed in the credits.
The Google Client ID you generate in the way of this video can be used in Step 2 below.
- Open the appsettings.json file in the
WebApidirectory and enter theGoogleClientIdunder theAppSettingssection of the file and make sure the value of theEnableGoogleSsooption is set totrue. - Test the Google SSO functionality by navigating to the test app, logging out if necessary and logging back in using the "Sign in with Google" button on the Login page.