Authenticating Google connectors


At, we use the Google OAuth2 API to enable our customers to authenticate into Google applications when building workflows on the Tray Platform.

Due to particulars around how the API works, for certain Google services, you will need to whitelist the app in the G-Suite admin interface. These services are:

Step 1 - Whitelisting the app

Before proceeding with the authentication of your Google accounts, it's essential to whitelist the OAuth2 application. This security measure ensures that only authentications created with the app are permitted, enhancing the overall security of your Google accounts and applications.

Note: Whitelisting does not grant access to your Google accounts; it only allows authentications created with the app.

Prerequisites: Ensure you have super admin permissions before following the instructions below.

Step-by-Step Guide:

To whitelist the OAuth2 application, follow these specific instructions using the G-Suite admin interface:

  1. Log in to the G-Suite admin console.

  2. Navigate to Security > Access and data control > API controls from the menu bar.

  3. On the App access control page, click the MANAGE THIRD-PARTY APP ACCESS button.

  4. Click the Add app button on the App access control page and choose OAuth App Name or Client ID from the available options.

  5. Enter the Client ID: in the search bar and click the SEARCH button.

  6. Under the App name select the app.

  7. Check the boxes for the client IDs you want to configure, then click Select.

  8. Select the organization you would like to configure access for and click CONTINUE.

  9. Choose the type of access the app has to Google data and click CONTINUE.

  10. Review the configured settings

Upon successful configuration, the app should be visible under the Configured apps list.

Step 2 - Creating the Authentications

Once you have whitelisted the OAuth2 app, you will now be able to create authentications for Gmail, BigQuery and AdWords.

For each service you wish to use, please see the individual connector pages where you will find instructions on how to authenticate and manage the specific access scopes you wish to give (read/write files, edit metadata etc.)

Notes for Embedded customers

Custom OAuth apps

You can create a custom OAuth app in order to White-label the authentication dialog for your integrations.

In order to use Google OAuth in an Embedded Solution and to access Google users’ data, Google requires 3rd party applications to validate domain ownership with their Authentication Server (full google docs here). Therefore, we need you to provide a subdomain that you would like to use, for example: *

The required steps are outlined below:


Google Setup: Part 1

Tray Setup

Google Setup: Part 2