How do I give Retool access to a Cloud Functions endpoint that requires authentication?

thedmeyer · January 31, 2022, 10:41pm

I have a solution to the problems outlined above. The magic lies within the scopes granted.

Authentication: OAuth2.0
authorization url: Sign in - Google Accounts
access token url: https://www.googleapis.com/oauth2/v4/token
client id and client secret following this guide: Creating a Google OAuth 2.0 client
audience: set this to the client id from above
access token lifespan: 3600
Scopes required: https://www.googleapis.com/auth/userinfo.email openid
For the authorization header be sure to use Bearer OAUTH2_ID_TOKEN

Noting: This works specifically for IAP (identity aware proxy) protected services

Topic		Replies	Views
Google Service Account Auth for REST API 💬 Feature Requests	31	5521	January 8, 2024
Google Service Account Authentication to IAP-protected API 💬 Queries and Resources	2	376	November 18, 2024
Retool Consent modal no longer popping 💬 Queries and Resources oauth2 , authentication	12	3148	August 2, 2023
OAuth2.0 & Google Cloud Platform (GCP) Identity Aware Proxy (IAP) 💬 App Building oauth2	2	2339	November 3, 2023
Airflow REST API Authentication 💬 Feature Requests	15	1703	December 7, 2023