Configure Google OAuth for workforce or customer authentication.
Step 1: Install the package
dotnet add package PrimusSaaS.Identity.Broker
Step 2: Configure Program.cs and middleware
using PrimusSaaS.Identity.Broker;
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddPrimusAuthBroker(builder.Configuration, builder.Environment.IsDevelopment());
builder.Services.AddControllers();
var app = builder.Build();
app.UseAuthentication();
app.UseAuthorization();
app.UsePrimusCsrfProtection();
app.MapControllers();
app.MapPrimusAuthBroker();
app.Run();
Step 3: Configure appsettings.json
{
"Google": {
"ClientId": "YOUR_CLIENT_ID",
"ClientSecret": "YOUR_CLIENT_SECRET"
}
}
How to get configuration values
- Go to Google Cloud Console > APIs & Services > Credentials.
- Create OAuth 2.0 Client ID (Web application).
- Authorized redirect URI:
https://your-api.com/api/auth/google/callback - Copy Client ID and Client Secret.
Step 4: Configure endpoint
Broker endpoints are mapped by app.MapPrimusAuthBroker().
GET /api/auth/providersGET /api/auth/googleGET /api/auth/me
Step 5: Test the endpoint
- Call
GET /api/auth/providersonce on app startup to seed the CSRF cookie. - Navigate to
GET /api/auth/googleand sign in. - Call
GET /api/auth/meto confirm the session.