Generating OAuth Client Key and Secret

1. Go to the Credentials page in the Google Cloud Platform console.

2. Select + Create Credentials in the top bar and then select OAuth client ID from the options list.

3. If you have not created OAuth consent screen before, you will need to create one.

4. Since Bifrost will be used for your internal employees only, Use Internal option in the list

5. Enter required details like App name, your email, developer contact information, authorized domain etc.

6. After creating consent screen, Once on the Create OAuth client ID screen choose Web application from the Application type dropdown.

Give your application a name. We recommend something like Bifrost to make it easy to identify and locate in the future.

7. Add your Bifrost domain as an authorized JavaScript origin URI. So if you are planning to use https://bifrost.yourdomain.com to access Bifrost enter https://bifrost.yourdomain.com as a URI.
8. Add <https://bifrost.yourdomain.com/auth/callback/google> as Authorized redirect URI.
9. Click Create. You will be then be presented with a client ID and client secret that you can use in bifrost configuration file.