๐ Admin Login
Login with your personnel or admin account to manage public applications.
๐ Quick Access
๐ฑ Public Applications Management
๐ OAuth Provider Configuration
๐ Detailed Setup Instructions
๐ต Google OAuth Setup
-
Go to Google Cloud Console
Visit console.cloud.google.com and sign in with your Google account
-
Create or Select Project
Click "Select a project" โ "New Project" โ Name it "Nerdi Gras OAuth" โ Create
-
Enable Google+ API
Go to "APIs & Services" โ "Library" โ Search "Google+ API" โ Enable it
-
Configure OAuth Consent Screen
Go to "OAuth consent screen" โ Choose "External" โ Fill out:
- App name: Nerdi Gras
- User support email: Your admin email
- Developer contact: Your admin email
- Authorized domains: nerdi-gras.org
-
Create Credentials
Go to "Credentials" โ "Create Credentials" โ "OAuth client ID" โ "Web application"
-
Configure Redirect URIs
In "Authorized redirect URIs", add:
https://nerdi-gras.org/auth/google/callback -
Copy Credentials
Copy the Client ID and Client Secret to the form above
๐ Discord OAuth Setup
-
Go to Discord Developer Portal
Visit discord.com/developers/applications and login
-
Create New Application
Click "New Application" โ Name it "Nerdi Gras Login" โ Create
-
Configure General Information
In the "General Information" tab, fill out:
- Description: OAuth login for Nerdi Gras convention website
- Tags: gaming, convention, community
- Upload a logo if desired
-
Go to OAuth2 Settings
Click "OAuth2" in the sidebar โ "General"
-
Add Redirect URI
In "Redirects", click "Add Redirect" and enter:
https://nerdi-gras.org/auth/discord/callback -
Copy Credentials
Copy the Client ID and Client Secret to the form above
Note: Click "Reset Secret" if you need to generate a new one
-
Set Required Scopes
The system automatically requests:
identifyandemailscopes
๐ Facebook OAuth Setup
-
Go to Facebook for Developers
Visit developers.facebook.com and sign in
-
Create New App
Click "Create App" โ "Consumer" โ Continue
- App name: Nerdi Gras
- Contact email: Your admin email
-
Add Facebook Login Product
Go to "Add Products" โ Find "Facebook Login" โ "Set Up"
-
Configure Facebook Login Settings
In Facebook Login โ Settings:
- Valid OAuth Redirect URIs:
- Enable "Login from Devices"
https://nerdi-gras.org/auth/facebook/callback -
Get App Credentials
Go to "Settings" โ "Basic" and copy:
- App ID โ Use as Client ID above
- App Secret โ Use as Client Secret above
-
App Review
For production, submit for app review to make public
For testing, add test users in "Roles" โ "Test Users"
โ๏ธ General OAuth Information
๐ Redirect URIs for Each Provider:
https://nerdi-gras.org/auth/google/callback
https://nerdi-gras.org/auth/discord/callback
https://nerdi-gras.org/auth/facebook/callback
๐ก๏ธ Security Best Practices:
- Never share Client Secrets publicly or in client-side code
- Regularly rotate OAuth secrets (every 6-12 months)
- Monitor OAuth usage in each platform's analytics
- Test OAuth flows in incognito/private browser windows
- Set up monitoring for failed OAuth attempts
๐ฅ Role Assignment Rules:
- @nerdi-gras.org emails: Automatically get Personnel or Admin roles
- Other emails: Get Public role by default
- Email verification: Can be required for OAuth users
๐งช Testing OAuth Integration:
- Save your OAuth configuration above
- Enable the provider you want to test
- Open an incognito browser window
- Go to the login page and click the OAuth provider button
- Complete the OAuth flow and verify user creation
- Check that user gets the correct role assigned