OAuth 2.0 setup in Google

This document provides a step-by-step guide on how to create and configure an OAuth2 Client in the Google API Console for integrating Google Drive with external applications. To authorize the OAuth2 account successfully, create and configure an application corresponding to the account as shown in the workflow.

  • A Google account with access to the Google API Console.
  • Understanding of OAuth 2.0 authentication flow.
  • Permissions to enable APIs and manage credentials.
  1. Access Google API Console.
    1. If a project is not already created, click on your organization name on the top right corner.
    2. Click New project.
    3. Provide a meaningful name and Click Create.
  2. Enable the Required API
    1. Click + Enable APIs and Services.
    2. Search for Google Drive API.
    3. Click Enable.




  3. Create OAuth credentials
    1. Navigate to Credentials in the left panel.
    2. Click + Create Credentials and select OAuth client ID.
    3. If prompted, configure the OAuth consent screen:
      • Provide Project configuration: application name and support details.
      • After finished, Click Create.
    4. Under Application Type, select Web application.
    5. Provide a meaningful name for your OAuth client.
    6. Configure the redirect URI and authorized JavaScript origins:
      • Authorized JavaScript Origin: https://elastic.snaplogic.com
      • Authorized Redirect URI: https://elastic.snaplogic.com/api/1/rest/admin/oauth2callback/googledrive
    7. Click Create and note down your Client ID and Client Secret.






  4. Configure OAuth 2.0 Scopes
    1. Edit your newly created OAuth 2.0 Client.
    2. Navigate to Data Access.
    3. Click ADD OR REMOVE SCOPES.
    4. Add all required Google Drive scopes. OAuth 2.0 Scopes for Google APIs Each REST resource defined in the API reference notes the scope needed for the ressource. Google Drive API
    5. Click Update.


    Authorization Endpoint Configuration Settings

    Use the following configuration settings for successful OAuth2 authentication:

    Parameter Value
    scope Required OAuth2 scopes. These must be defined in the OAuth2 Client in the Google Console (e.g., https://www.googleapis.com/auth/drive) Learn more. Refer to OAuth 2.0 Scopes for Google Drive API to find the necessary scope for each REST resource.
    access_type offline (Ensures refresh tokens are issued for long-term access.)
    redirect_uri https://elastic.snaplogic.com/api/1/rest/admin/oauth2callback/googledrive (Specifies the callback URL for authentication.)
    prompt consent (Forces user consent during authentication, ensuring fresh permissions are granted.)
    Important: The defined scopes must match those configured in the Google OAuth Client in the console.
  5. Specify the credentials and validate the Snap account in SnapLogic platform.
    1. Navigate to the Google Drive Snap of your choice.
    2. Configure the Google Drive OAuth2 User Account with the Client ID and Client secret from the Google API Console.
    3. Configure the OAuth2 authorization endpoin (https://accounts.google.com/o/oauth2/auth), and OAuth2 token endpoin (https://oauth2.googleapis.com/token).
    4. Select the Auto-refresh token checkbox in the account settings and click Apply.
    5. Click Authorize, sign in with valid Google credentials, and grant permissions. The Access and Refresh tokens are generated and encrypted in SnapLogic.
    6. Click Validate to confirm successful integration, then save the account for use in SnapLogic pipelines.