OAuth Setup

​

Authorization

1. Create a Google Cloud Project
   • https://console.cloud.google.com/projectcreate
2. Enable the Google Drive API
   • On the left panel, open APIs & services
   • Go to Enabled APIs and services
   • On the top click +ENABLE APIS AND SERVICES
   • Search for Google Drive API and click ENABLE
   • Alternatively visit this link, select your project and enable the Google Drive API
3. Enable the Admin SDK API
   • Click on +ENABLE APIS AND SERVICES again.
   • Search for Admin SDK API and click ENABLE
   • Alternatively visit this link, select your project and enable the Admin SDK API
4. Enable the Google Sheets API
   • Click on +ENABLE APIS AND SERVICES again.
   • Search for Google Sheets API and click ENABLE
   • Alternatively visit this link, select your project and enable the Google Sheets API
5. Enable the Google Docs API
   • Click on +ENABLE APIS AND SERVICES again.
   • Search for Google Docs API and click ENABLE
   • Alternatively visit this link, select your project and enable the Google Docs API

6. Set up the OAuth consent screen
   • Under APIs & services, select the OAuth consent screen tab
   • If you don’t have a Google Organization select External for User Type
   • Call the app Onyx (or whatever you want)
   • For the required emails, use any email of your choice or founders@onyx.app if you wish for the Onyx team to help handle issues.
   • Click SAVE AND CONTINUE
7. Set up Scopes
   • Add the scope .../auth/drive.readonly for Google Drive API
   • Add the scope .../auth/drive.metadata.readonly for Google Drive API
   • Add the scope .../auth/admin.directory.user.readonly for Admin SDK API
   • Add the scope .../auth/admin.directory.group.readonly for Admin SDK API

8. Set up Test users
   • This is only applicable for users without a Google Organization.
     • Typically for a company, Onyx would be set up as an internal app so this step would not apply.
   • Add at least one test user email. Only the email accounts added here will be allowed to run the OAuth flow to index new documents.
   • Click SAVE AND CONTINUE, review the changes and click BACK TO DASHBOARD
9. Create Credentials
   • Go to the Credentials tab and select + CREATE CREDENTIALS -> OAuth client ID

• Choose Web application and give it some name like OnyxConnector
• Add a Authorized JavaScript origins
  • http://localhost:3000 if self-hosting
  • https://<INTERNAL_DEPLOYMENT_URL> if you have setup Onyx for production use
  • https://cloud.onyx.app if you are using the Onyx Cloud service
• Add a Authorized redirect URIs
  • http://localhost:3000/admin/connectors/google-drive/auth/callback if self-hosting
  • https://<INTERNAL_DEPLOYMENT_URL>/admin/connectors/google-drive/auth/callback if you have setup Onyx for production use
  • https://cloud.onyx.app/admin/connectors/google-drive/auth/callback if you are using the Onyx Cloud service

• Click create and on the right hand side next to Client secret, there is an option to download the credentials as a JSON. Download the JSON for use in the next step.

​

Indexing