All Collections
Integrations & SSO
SSO
Google Workspace OpenID Connect
Google Workspace OpenID Connect

Set up OpenID Connect for Learnster with Google Workspace.

Michael Smietana avatar
Written by Michael Smietana
Updated over a week ago

For troubleshooting - see this article

OpenID Connect (OIDC) is a modern authentication protocol that provides a secure and standardized way for users to authenticate across multiple websites and applications. OIDC is mainly used for user authentication in modern web and mobile applications.

OIDC is the recommended SSO method by Learnster since it's designed to support modern applications and Learnster support OIDC as an SSO mechanism for Learnster U, Learnster Studio and the Learnster U iOS and Android app.

To configure OIDC with Google Workspace and Learnster, you must set up a Google Cloud Platform (GCP) project and configure OAuth 2.0 credentials for the GCP project. Please note that you must have administrator-level access to your organization’s Google Workspace account to create a new GCP project, or permissions to create and configure OAuth 2.0 credentials for an existing project. Learnster recommends that you create a new project for managing SSO access with Learnster via Google Workspace.

Please follow the instructions below to set up OIDC SSO with Learnster and Google Workspace.

OIDC for Learnster U and Learnster Studio

  1. Start by going to the Google Cloud Console.

  2. Create a new Google Cloud Platform (GCP) project. If you don't have a GCP project already, please see the Google documentation topic creating and managing projects.

  3. After you have created the project, open the Credentials page in the Google API Console.

  4. Click "Configure Consent Screen"...

    ...choose "Internal" and click "Create"...

    ...fill in the "App name" you want to use, the "User support email" and the "Developer contact information" at the bottom (you can leave the other fields as is). Click "Save and Continue".

    In the next step, click "Add or remove scopes" and choose ".../auth/userinfo.email". Click "Save and continue" and then "Back to dashboard".

  5. Go back to "Credentials" and create new OpenID credentials with Create Credentials/OAuth client ID.

  6. Choose "Web application" as the "Application type", choose a name and add the "Reply URL" from Learnster's OIDC settings.

  7. In the next step, copy the "Client ID" and "Client Secret" and paste them into Learnster's OIDC configuration.

  8. In Learnster's OIDC settings, paste the link:

    https://accounts.google.com/.well-known/openid-configuration

    ...into the "OpenID Provider Configuration" filed.

  9. You can now scroll down to the status setting, turn OIDC SSO on, save the changes and OpenID Connect SSO settings for Learnster U and Studio should be ready. However...

  10. Please note that you most probably need to configure which unique user identifier should be used between Learnster and Azure for the SSO to work properly. The easiest and most straight forward unique identifier to use is email. To use email as a unique identifier, simply choose "Email" as "Unique Identifier" and "Email as unique identifier" in Learnster's OIDC settings.

OIDC for Learnster U iOS App

Please follow the instructions below to set up OIDC SSO for Learnster U for iOS and Google Workspace. Make sure that you have followed the steps above before you start the iOS setup.

  1. Go to "Credentials" and create new OpenID credentials with Create Credentials/OAuth client ID (same as you did in step 5. above for the web client).

  2. Choose "iOS" as the "Application type", choose a name and add the "iOS App Bundle ID" from Learnster's OIDC settings as "Bundle ID".

  3. Copy the "Client ID" from the iOS OIDC Client that you just created and paste it as the "Application (client) ID" for iOS in Learnster's OIDC settings.

  4. Add "com.learnster.upp:" as the "Redirect URI" for iOS in Learnster's OIDC settings.

    Save your changes and the iOS setup is done.

OIDC for Learnster U Android App

Please follow the instructions below to set up OIDC SSO for Learnster U for Android and Google Workspace. Make sure that you have followed the steps above before you start the Android setup.

  1. Go to "Credentials" and create new OpenID credentials with Create Credentials/OAuth client ID (same as you did in step 5. above for the web client and step 1. for the iOS client).

  2. Choose "Android" as the "Application type", choose a name, add the "Android App Package Name" from Learnster's OIDC settings as "Bundle ID" and "Android App SHA-1 Certificate Fingerprint" as the "SHA certificate fingerprint"

  3. Copy the "Client ID" from the Android OIDC Client that you just created and paste it as the "Application (client) ID" for Android in Learnster's OIDC settings.

  4. Add "com.learnster.upp://" as the "Redirect URI" for Android in Learnster's OIDC settings.

    Save your changes and the Android setup is done.

Did this answer your question?