From cb3f69fe27ee8b73cbe4a0714462bcf2d28c1450 Mon Sep 17 00:00:00 2001
From: devdavidkarlsson <david@inkorgen.nu>
Date: Thu, 4 Nov 2021 11:02:10 +0100
Subject: [PATCH] Add google oidc example to readme md

We are using this with google, maybe it can be nice with an example. Especially since some may forget to configure their google consent to internal.

Thanks :)
---
 README.md | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/README.md b/README.md
index 25936dbc..aca85357 100644
--- a/README.md
+++ b/README.md
@@ -165,6 +165,22 @@ alb_authenticate_oidc = {
 
 Read more in [this post](https://medium.com/swlh/aws-alb-authentication-with-okta-oidc-using-terraform-902cd8289db4)
 
+##### Google
+
+```hcl
+  alb_authenticate_oidc = {
+    issuer                              = "https://accounts.google.com"
+    token_endpoint                      = "https://oauth2.googleapis.com/token"
+    user_info_endpoint                  = "https://openidconnect.googleapis.com/v1/userinfo"
+    authorization_endpoint              = "https://accounts.google.com/o/oauth2/v2/auth"
+    authentication_request_extra_params = {}
+    client_id                           = "google_client_id"
+    client_secret                       = "google_client_secret"
+  }
+```
+
+Note: remember to set your google consent screen to internal to only allow users from your own domain.
+
 #### AWS Cognito with SAML
 
 The AWS Cognito service allows you to define SAML applications tied to an identity provider (e.g., GSuite). The Atlantis ALB can then be configured to require an authenticated user managed by your identity provider.