How to configure Google OAuth for Mail Integration

Edit online

Google OAuth is a safe and secure way to connect Mail Integration to Google Workspace/Gmail account.

To configure Google OAuth for Mail Integration:
  1. Open https://console.developers.google.com/, click on the list of the projects in the top bar and choose New project in the pop-up.Targetprocess Image

  2. Enter a project name. For example, Email Integration.

    Targetprocess Image
  3. Go to OAuth consent screen. Select the type of application you'd like to create. GSuite users can create both Internal and External applications while ordinary Gmail users can create only External application.Targetprocess Image

  4. Enter the name of the product in the field Application name and save it. It is possible to use the same name as your Project —Email Integration. It will be displayed on the list of apps that have granted permissions to use google account.

    Targetprocess Image
  5. Open Credentials tab and click +Create Credentials to add OAuth client IDTargetprocess Image.
  6. Choose Application type as Web application, set random name for this client ID and configure Authorized redirect URI in ashttps://{account}.tpondemand.com/Admin/Plugins.aspx

    where {account}.tpondemand.com is your Targetprocess URL.

    Targetprocess Image
  7. After creating an OAuth client ID, you will receive Client IDand Client Secret. These values will be used in place of traditional credentials on the Targetprocess side. Save them securely, as they will be required for authentication and authorization purposes.Targetprocess Image
  8. Open your Targetprocess account and go to Settings > Integrations > Mail Integration. You can create a new one or use the existing profile.
  9. In the configuration, choose Google OAuth in Secure access method drop-down.
  10. Enter the Client ID and Client Secret values obtained in the 7th step into the required fields.Targetprocess Image
  11. Click Sign in and select between three options:
    • No prompt: This option will not display any authentication screen and will return an error if the user is not already authenticated and has not pre-configured consent for the requested scopes.
    • Consent: The authorization server prompts the user for consent before returning information to the client.
    • Select account: This option enables a user with multiple accounts to select from the accounts they are currently logged into.

    Targetprocess Image

  12. Click Sign in. The authorization server will prompt the user for consent before returning information to the client.
    Note:

    If we have created External application on step 2 we might get error "This app isn't verified" during sign in. In this case we need to click "Advanced" and "Go to tpondemand.com (unsafe)"

    Your Mail Integration is connected to the mailbox using Google OAuth.