Docs Index

Google Workspace Single Sign-On (using Admin Console)

Last updated on Available in French

CoderPad single sign-on (SSO) uses SAML 2.0 for authentication, and we support integration with standard 3rd party SAML providers. As a reminder, any admin on your CoderPad account can configure SSO at https://app.coderpad.io/dashboard/organization/saml_settings.

To set up your team with Google Workspace SSO, follow the steps below:

  1. Add CoderPad to your Google Admin account
  2. Enable Google SSO in your CoderPad account

Add CoderPad to your Google Admin account 

  1. Visit the left navigation menu of your Google Admin dashboard, select Apps and then select Web and mobile apps.
The google admin dashboard with the "web and mobile apps" selection highlighted under the "apps" item in the left nav.
  1. Click to Add App then Add custom SAML app.
The "add app" drop down is shown and "add custom SAML app" option is highlighted.
  1. On the App details screen, set the app name. We recommend “CoderPad” for clear future reference.
The app details screen is shown with the "App name" field highlighted.
  1. Then Google provides you with two options. The first is “Download IdP metadata”, which is the option we recommend. To do this, click DOWNLOAD METADATA to download the metadata; it will be downloaded as an XML file.
The download meta date button is shown beneath "option 1: download idp metadata" section. There is an arrow pointing the the xml file in the download bar at the bottom of the browser.

(If you wish to go with “Option 2”, please see below for details on manual data entry.)

  1. Then click Continue.
  1. On the service provider details screen, provide the following details:
    1. ACS URL is “https://coderpad.io/saml/acs”
    2. Entity ID is “https://coderpad.io”
    3. Add a Start URL. We recommend your company name (without spaces), ex: yourcompanyname.coderpad.io.
The service provider details 1- Acs details, 2 - entity id, and 3 - start url (optional).
  1. Then set the “Name ID” format to “EMAIL”, and click Continue.
At the bottom of the service details page the name id format is set to "email".
  1. Finally, click Finish. Then sign into your CoderPad account as an admin.
The attributes page is shown with an arrow pointing to the finish button.

Enable Google SSO in your CoderPad account

  1. Visit your CoderPad account SSO settings to upload the XML metadata file you downloaded from Google. (You can only visit this page if you are an admin on a team account.) Note: For Google services you do not need to ingest the Service Provider metadata.
On the SSO settings page in the coderpad dashboard an arrow is pointing the the "choose file" button of the "upload your saml xml metadata file" field.
  1. Then provide the subdomain for your team to log into. We recommend your company name (without spaces). This must match the Start URL you used in Step 6 above.
The "step 2: customize sign-in" section where you choose a custom coderpad domain for SSO.
  1. Then Save your SSO settings.

    We recommend first leaving the “Enforce SSO” checkbox unchecked to test login.
The save button at the bottom of the coderpad sso page is highlighted.
  1. Upon successful SSO login testing, then check to “Enforce SSO” and click Save again.
At the bottom of the SSO config page in the coderpad dashboard the "Enforce sso" button is checked.

Manual Google IdP Metadata Entry

 If you choose Google’s “Option 2” to manually copy and paste the IdP metadata into CoderPad, you must convert Google’s SHA-256 fingerprint into a SHA-1 formatted fingerprint. 

To do this, copy the entire Certificate from Google, paste it into a conversion service (such as https://www.samltool.com/fingerprint.php) then copy the SHA-1 formatted fingerprint to add to CoderPad.

On option 2 in the "Add custom saml app" google dashboard page an arrow points to the copy button for the certificate.
onelogin saml developer tool is shown. In the top box is labelled "paste certificate here", then there is an arrow pointing to the "calculate fingerprint" button and the "formatted fingerprint" output field is highlighted.

Once you obtain the formatted fingerprint, you’ll need to add it (C) along with the SSO URL (A) and Entity ID (B) to their respective fields in the Manual entry section of the CoderPad SSO integration.

The google dashboard to coderpad sso mappings: SSO url in google maps to SSO target url field in coderpad sso, entity id in google maps to issuer entity id in coderpad sso, and the formatted fingerprint from the previous step is added to the "certificate sha-1 fingerprint" field in coderpad sso.

Then hit Save and you’re done!