I'm building a backoffice aplication and want to leverage our companies Google for Work directory for authentication. Is there a way to retrieve the groups a user belongs to within the organization? Maybe to get them in the claims when authenticating via OpenId?
Related Questions in SECURITY
- HTTPS configuration in Spring Boot, server returning timeout
- HSM ZKA control mask values
- OWASP Amass Subcommands
- Is there a need for BPF Linux namespace?
- Error when trying to execute a binary compiled in a Kali Linux machine on an Ubuntu system
- When sanitize/encode while implementing tags system like on SO
- spring security version in spring-boot-starter-security
- I am currently trying to implement a rudimentary firewall from a video I watched but the nimda worm detection is not working and i do not know why?
- Is it possible for `sudo` to fail temporarily with the correct password? Hacking suspected
- Is it viable proxying all my mobile apps requests, to some kind knowing that a request is coming from a secure source
- What abilities should I concentrate on while bug hunting, and how can I improve the quality of my bug bounty reports?
- System.ArgumentOutOfRangeException: I passed this error in every single program
- How to prevent users from creating custom client apps?
- Does server-side content security policy exist for youtube video player API, app, mod apks and website?
- Can we pass a hostname/IP address as a query string in a GET request in REST API
Related Questions in GOOGLE-OAUTH
- Lambda endpoint for the Google OAuth callback does not recieve the access_token
- Unable to call datastore using GCP service account key json
- Google Drive Service Account gets googleapiclient.errors.HttpError: 401 "Request is missing required authentication credential" when authenticating
- If you're using the Google Oauth2 authentication method to send emails with Gmail API from *your* account, when do you need to refresh the token?
- Verifying Google Identity OAuth2 token with Ruby
- I am trying to implement authentication in django using django_cas_ng, and also provide a option for all-auth for google login
- How to Sync Google Calendar Events Using Push Notifications?
- How to use Oauth in order to log‑in on .googleapis.com on almost any arbitrary endpoints domains from the web browser?
- Main tab doesn't retain authenticated state after authenticating user in popup window using Laravel Socialite
- ASP.NET Core Google external login issue
- I don't know how to change the language of my google sign in button
- Django Allauth Bad Request Error, Error Retrieving Access Token: Invalid Grant
- Getting Oauth2 token in Rust
- https://accounts.google.com/gsi/client missing 'Access-Control-Allow-Origin' header
- Using Google OAuth in .NET Core with AWS load balancer
Related Questions in GOOGLE-OPENID
- Google Workspace openid pre-consent
- redirect URI mismatch error for google auth 2.0 and openid connect (OAuth Client ID type "Chrome Extension" and "Web Application")
- Google OpenID Connect: Not receiving "auth_time" claim when supplying the "max_age" parameter to an authentication request
- post_logout_redirect_uri with Google OAuth is not working
- Google token endpoint returning unsupported grant type
- Google OpenId - redirect_uri/callback not happening. Is the issue localhost?
- Google openid does not ask for consent
- How to get the Google user openid with authorization token?
- Can google openID be used in an intranet application?
- Implementing Google Account as Open ID Connect in .Net
- Google sign in - restrict login inside a domain
- Does Google support the amr claim OpenID Connect MODRNA
- OpenIdConnectAuthenticationHandler: message.State is null or empty when trying to sign in with Google oAuth
- Why does Google OAuth API requires client_secret for the device flow? Is it safe to store the secret in an app that can be downloaded?
- Client Credentials Grant in Google oAuth
Related Questions in GOOGLE-OPENIDCONNECT
- How to Exclude Email Address from JWT with Google Identity Services using Only openid Scope
- Tomcat makes a new session after a redirect from Google OAuth 2.0 API. Why?
- Google openid does not ask for consent
- Google openid connect - How to create an access-token with specific custom and scopes
- GoogleIdTokenVerifier.verify always returns null
- Are Google OpenID Connect error responses conformant?
- How sensitive is the Google OpenID Discovery Document to change?
- No email or email_verified claim in Google ID token
- Flask JWT Extension throws exception when validating a Google JWT token
- OpenID Connect: inconsistent refresh token behaviour between different Identity Providers
- ASP.NET Core Authentication via Google Sign In with REST API in between
- Will the openid scope "https://www.googleapis.com/auth/plus.me" be affected by the Google+ shutdown?
- What should be replaced with 'plus.me' scope on G Suite Marketplace?
- High latencies against https://oauth2.googleapis.com/token endpoint with auth_code flow
- Asking for User Name or Unique Identity before OAUTH/OpenID-Connect
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Popular Tags
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
While your question is a little unclear (what are you using to build your application? what exactly do you mean by "the groups a user belongs to"?), you can fairly easily retrieve user information using the Directory API.
For actual authentication, you can use Google as an Oauth identity provider.