Back to oneall.com

Restrict login by domain name

Marko_DžidićMarko_Džidić
in Social Login
Hello,

Please tell me is there option to restrict Google login only for company domain?

How can I change OAuth params? I need access to "hd" param...

https://developers.google.com/identity/protocols/OpenIDConnect#authenticationuriparameters

Answers

  • Claude_SchlesserClaude_SchlesserAdministratorOneAll Team
    Hi Marko,

    could you please tell me what exactly you are trying to achieve?
    Do you want to enable login only with Google accounts that have an email address under a specific domain?

    Regards,
  • Marko_DžidićMarko_DžidićMember
    Hello,

    Our company using Google Apps, and I want to allow login only from our domains.
    That's possible if I just could add parameter "hd" inside OAuth API call...

    More info at https://developers.google.com/identity/protocols/OpenIDConnect#authenticationuriparameters
  • Fred_PinelFred_PinelMember
    edited June 2016
    Hi,
    Adding this parameter is not feasible for Google.
    However, you could implement the domain restriction in the callback (server-side).
    There are login events available to the browser (JS), but they do not provide the email address.

    Regards
  • Marko_DžidićMarko_DžidićMember
    Hello,

    This is official Google parameter as You can see it on mentioned link.

    We are using it on our custom apps, we have company-domain.com on Google Apps, and we allow only Google Auth from our company domain.
  • Fred_PinelFred_PinelMember
    Hi,
    We understand your request. At present, this is not possible with our plugin.
    We'll consider adding this feature, but, right now, cannot promise anything.

    Regards.
Login to your OneAll account to add a new comment

Welcome!

Please sign in to your OneAll account to ask a new question or to contribute to the discussions.

Please click on the link below to connect to the forum with your OneAll account.

Ask a question

Information

Products & Services

Categories