Configuring OAuth authentication for Google Cloud Platform (GCP)

About customer-provided OAuth client authentication

An application that authenticates to Google using OAuth 2.0 must provide two objects in GCP:

  • OAuth consent screen that tells users who is requesting access to their data and what kind of data users are allowing your application to access.

  • OAuth Client ID used to authenticate an application to Google. It is necessary when you want to access resources owned by your end user.

For the private preview of the Snowflake Connector for Google Analytics Raw Data, you must provide your own OAuth consent screen and client ID to authenticate. In a future release, the consent screen will be provided.

Note

If you are using PrivateLink please contact with Support team, or alternatively you can use Service Account authentication method. For details, see Configuring service account authentication for Google Cloud Platform (GCP).

Prerequisites

To provide the OAuth consent screen and OAuth client ID, you must create a Google Cloud Platform (GCP) project first. Refer to the GCP documentation to learn how to create a GCP project.

Note

If possible, create an OAuth consent screen in a GCP project that belongs to an organization. Make sure that the connector users are members of the same organization.

If your project does not belong to an organization, you must renew authentication every seven days.

Configuring the OAuth client ID

The following procedure describes how to configure the OAuth Client ID:

  1. To open the OAuth consent screen creator, select APIs & Services » Credentials in your GCP project.

  2. Select Create credentials » OAuth client ID.

  3. In the Application type dropdown list, select Web application.

  4. In the Name box, enter the following name: Snowflake Connector for Google Analytics Raw Data ID.

  5. Select Authorized redirect URIs » Add URI.

  6. In the Snowflake Connector for Google Analytics Raw Data interface, go to the third step of the connector configuration: Authentication. Choose OAuth2 and copy the value from the Redirect URL box.

  7. Go back to the GCP interface, and paste the value to the URI box.

  8. Select Create.

  9. Copy the Your Client ID and Your Client Secret values.

  10. Paste the values into the corresponding boxes in the Snowflake Connector for Google Analytics Raw Data interface.

  11. Select Sign in.