SSO With Google Sign-In

Overview

Blindata offers seamless user authentication through Google Workspace integration. This allows users within your organization to leverage their existing Google Workspace credentials for secure and convenient access to the platform.

Benefits of Google Sign-in:

  • Simplified Login: Users can access Blindata directly using their familiar Google Workspace login credentials, eliminating the need for separate accounts and passwords. This improves user experience and reduces login fatigue.
  • Enhanced Security: Google Workspace enforces robust security measures, including multi-factor authentication (MFA), to protect user identities. This adds an extra layer of security to your Blindata platform.
  • Centralized Management: Organizations utilizing Google Workspace can leverage existing user management practices for Blindata access as well. This streamlines administration tasks.

How it works:

  1. When attempting to access Blindata, users are presented with the option to “Sign in with Google.”
  2. Clicking this option redirects them to the familiar Google Workspace login portal.
  3. Users enter their Google Workspace credentials and authenticate with Google.
  4. Upon successful authentication, Google Workspace securely transmits user information to Blindata, granting access to the platform.

Technical Details

Behind the scenes, Blindata utilizes the OpenID Connect (OIDC) protocol with PKCE (Proof Key for Code Exchange) to securely communicate with Google Workspace for user authentication.

OpenID Connect (OIDC): This industry standard protocol establishes a secure way for Blindata to verify a user’s identity with Google Workspace. OIDC defines a common language for exchanging user authentication information between applications and identity providers (like Google Workspace). PKCE (Proof Key for Code Exchange): This security extension adds an extra layer of protection during the authorization code exchange process. It helps prevent unauthorized applications from obtaining access tokens by ensuring the application requesting access is the same one that initiated the login flow.

Important Considerations:

Ensure your organization has a Google Workspace account setup. Users attempting to sign in with Google Workspace must have a valid Google account associated with your organization’s domain.

Google Workspace administrator privileges might be required to configure single sign-on (SSO) for Blindata within your organization (refer to Google’s documentation for details).

Additional Resources

Google Workspace Admin Help Center: https://support.google.com/a/?hl=en

Note

The configuration outlined in this guide are also applicable for Blindata on premise and dedicated deployments with custom configurations. Contact your sales representative for the technical guides of how to configure your on-premise or dedicated instance.

Updated on 19 Apr 2024