Google Cloud Platform OIDC Integration Guide Overview
This documentation describes how to set up the Pivotal Cloud Foundry (PCF) Single Sign-On service to use Google Cloud Platform (GCP) as an OpenID Connect (OIDC) identity provider.
PCF Single Sign-On (SSO) supports service provider-initiated authentication flow and single logout. It does not support identity provider-initiated authentication flow. All SSO communication takes place over SSL.
GCP lets you build and host applications and websites, store data, and analyze data on Google’s scalable infrastructure.
Prerequisites
To integrate Google Cloud Platform as a single sign-on identity provider for PCF apps, you need:
Pivotal
- PCF v1.11.0 or later
- SSO v1.4.1 or later installed on your PCF deployment
- An SSO service plan configured with plan administrators who manage it and orgs to use it. For help configuring plans, see Manage Service Plans.
Google Cloud Platform
- An active Google Cloud project
- A GCP user account with project editor or higher privileges
Integrate Google Cloud Platform OIDC for SSO
Complete the step below to set up GCP as an OIDC identity provider for the SSO service.