Google Cloud Platform OIDC Integration Guide Overview

Warning: Single Sign‑On for Pivotal Cloud Foundry v1.6 is no longer supported because it has reached the End of General Support (EOGS) phase as defined by the Support Lifecycle Policy. To stay up to date with the latest software and security updates, upgrade to a supported version.

This documentation describes how to set up the Pivotal Cloud Foundry (PCF) Single Sign-On service to use Google Cloud Platform (GCP) as an OpenID Connect (OIDC) identity provider.

GCP lets you build and host applications and websites, store data, and analyze data on Google’s scalable infrastructure.

Prerequisites

To integrate GCP as a single sign-on identity provider for PCF apps, you need:

Pivotal

  • PCF, v1.11.0 or later.
  • Single Sign-On, v1.4.1 or later installed on your PCF deployment
  • An SSO service plan configured with plan administrators who manage it and orgs to use it. For help configuring plans, see Manage Service Plans.

GCP

  • An active Google Cloud project.
  • A GCP user account with project editor or higher privileges.

Integrate Google Cloud Platform OIDC for SSO

Complete the step below to set up GCP as an OIDC identity provider for the SSO service.

  1. Configure GCP as an OIDC Identity Provider

Test and Troubleshoot