- Hasura Platform
- Getting started
- Installing the Hasura CLI
- The complete tutorial
- GraphQL tutorial
- Hasura project
- Hasura cluster
- Project microservices
- API Console
- Auth
- Data (GraphQL/JSON APIs)
- Filestore
- Notify (Sending emails/SMS)
- Postgres
- API gateway
- Hasura Hub
- Hasura CLI reference
- Hasura API reference
- Guides
- Installing Hasura on a Kubernetes Cluster
- Hasura architecture
- Billing for Hasura
- Moving to v0.16 from v0.15
- Moving to v0.15 from older versions
Google authentication¶
Configuration¶
- To use Google login with Hasura, create a Project on https://console.developers.google.com/. You can know more about using Google login from https://developers.google.com/identity/.
- Register an application with Google, obtain the client ID and client secret.
- Now you need to configure the Hasura auth microservice with these credentials.
- To configure, go to the conf/auth.yaml file inside your Hasura project.
- Under
google, set the array ofclientIds.
Note
The google key might be commented out. Make sure to uncomment it if it is.
google:
clientIds: ["String"]
clientSecret:
secretKeyRef:
key: auth.google.client_secret
name: hasura-secrets
clientIds: The client IDs obtained when creating the application. This is an array of strings. For example, it could be an array of your web client ID, iOS client ID etc.
clientSecret: The client secret obtained when creating the application. As you see in the above code snippet, client secret is a reference to a hasura project secret called
auth.google.client_secret. To add your client secret tohasura project secrets, run the following command from your project directory.$ hasura secret update auth.google.client_secret
Choose your device and Google SDK from here: https://developers.google.com/identity/choose-auth
Web apps¶
For web apps, use the Google SDK to integrate with Hasura auth.
See here how to use it: https://developers.google.com/identity/sign-in/web/
Mobile apps¶
For mobile apps, you can use Google SDK to integrate with Hasura auth.
See here for more information:
API¶
Login / signup¶
- Use Google SDK from above to obtain the
id_token(oridToken) of the logged in Google user. (In some older platforms you might receive anaccess_token(oraccessToken). In that case, you can replaceid_tokenwithaccess_tokenin the rest of article.) - Once the
id_tokenis obtained, send theid_tokento the Hasura auth microservice:
POST auth.<cluster-name>.hasura-app.io/v1/login HTTP/1.1
Content-Type: application/json
{
"provider" : "google",
"data" : {
"id_token": "String",
}
}
If successful, this will return a response as follows:
HTTP/1.1 200 OK Content-Type: application/json { "auth_token": "b4b345f980ai4acua671ac7r1c37f285f8f62e29f5090306", "hasura_id": 79, "new_user": true, "hasura_roles": [ "user" ] }
If the user is a new user,
new_userwill be true, else false.To check if the current user is logged in, make a call to:
/v1/user/info.To logout, make a call to
/v1/user/logout.To get the Hasura credentials of the current logged in user,
/v1/user/info.
