Google Social Login with Magic
Google Social Login with Magic
#Overview
You can allow your users to sign up & login into your web application with their Google account.
#Usage
If your users are encountering an "Access blocked: magic.link has not completed the Google verification process" error, please read below.
#Prerequisites
- You will need a Google Developer account
- You will need to have the Magic SDK installed into your web app
- You will need to have the Magic SDK - OAuth Extension installed into your web app
#Google Setup
After installing the OAuth extension, you can now enable Google Login for your Magic app:
- Follow Google’s instructions to set up an OAuth 2.0 app
- Obtain the OAuth Client ID and Client Secret from your Google Developer dashboard
- Go to your Magic Dashboard
- Select the Magic app for which you’d like to enable Google Login, or create a new app
- Navigate to Social Login from the sidebar
- Click the toggle for Google / Gmail
- Input the Client ID and Client Secret for your OAuth app
- Copy the Redirect URI field from your Magic Dashboard and add it to your Google Dashboard’s OAuth app configuration:
- In Magic Dashboard, click “Save”
- Click "Test Connection" to give your new Google OAuth flow a try!
#Verification Process
If your users are encountering an Access blocked: magic.link has not completed the Google verification process error, you will need to go to your Google developer dashboard and change your app's "Publishing status" from "Testing" to "In production".
To do this, please follow these steps:
- Go to your app within the Google developer dashboard and select "OAuth consent screen" on the nav menu.
- Under "Publishing status", select "publish app".
- Once the status is set to "In production", you should no longer be encountering the error.
Note: If your app meets certain criteria, you might be required to go through a verification process. In order to avoid this, we recommend removing any icons or logos you have added in the Google developer dashboard.
The full list of criteria that requires verification from Google is as follows:
- You want your application to display an icon or app name
- Your app requests authorization of any sensitive or restricted scopes
- The number of authorized domains for your apps exceeds the domain count limit for a project
- There are changes to the OAuth consent screen after your app has been approved
#Gmail Linking
A user's email login and Google social login can automatically be linked so that logging in with either auth factor will resolve to a single wallet.
This is most useful when customers forget whether they signed up with your app using Google login or their email address. This prevents the creation of 2 wallets and future confusion where they log in with the wrong account and don’t see their assets.
By default, this account linking is enabled in the dashboard. This will ensure that users who log in with an email and Google social login using the same email address will resolve to the same wallet. Turning this feature off will prevent automatic linking for new users. It will not unlink existing users' social and email logins.