Connect to your Google Security Command Center app for OAuth.
Create Project
button in the top right.APIs and services
> Credentials
in the left side menu.Apps catalog
in Cobalt > Search for Google Security Command Center
> Settings
> Use your credentials
> Callback Url
> Copy it.+ Create Credentials
button in the top in the Cloud Console app and select OAuth client ID
.Web application
from the Application type dropdown > scroll to Authorized redirect URIs
section > Click + Add URI
button > Paste the Callback Url > Click Create
button in the bottom.OAuth consent screen
in the left menu under APIs and services
> Click on the Edit App
button > Scroll down > Click Save and Continue
in the OAuth consent screen section > Click Add or Remove Scopes
button in the Scopes section.Manually add scopes
> Click on Add To Table
> Click on Update
> Click on Save and Continue
at the bottom of the page.Enabled APIs and services
in the left menu under APIs and services > Click on + Enable APIs and Services
> Search for Cloud Resource Manager API
& also Security Command Center API
> Click on Enable
for both.Credentials
in the left menu under APIs and services
and select the Web Client under OAuth 2.0 Client IDs
. Copy the Client ID and Client Secret under Additional information
section.OAuth2
based application. For your customers to provide you authorization to access their data,
they would first need to install your application. This page lets you set up your application credentials.
Permissions & Scopes
section.
For some applications Cobalt sets mandatory scopes which cannot be removed. Additional scopes can be selected from the drop down. Cobalt also has the provision to add any
custom scopes supported by the respective platform.
Cloud Console dashboard
> Select the Project created for Cobalt > Follow the steps 8 and 9 mentioned above for adding scopes.
In production
are available to any user with a Google Account. Projects configured with a publishing status of In production should complete the verification process, including defining scopes actively requested by your project’s OAuth clients, if it meets one or more of the OAuth verification criteria.
OAuth consent screen
in the left menu under APIs and services > Choose the App type as External
and click on Publish App
button.Prepare for Verification
and provide the required information.Findings
Scan Configs
Scan Runs
Others