Authorize Coveo to access your Google content

To authorize Coveo to access your Google content, you must perform a Google Workspace (formerly G Suite) domain-wide delegation of authority after creating a Google Cloud Console project and service account.

Authorize your service account client ID

  1. Access the Google Workspace Admin Console with a super administrator account. Super administrator privileges are required for domain-wide delegation, which you’ll configure later on.

  2. In the main menu, select Apps > Google Workspace > Service status.

    Access the Service Status section | Coveo
  3. In the Services list, ensure that the status for Drive and Docs is set to On for everyone.

  4. In the main menu, select Security > Access and data control > API controls.

    Access the API controls section | Coveo
  5. In the Domain wide delegation pane, click Manage Domain Wide Delegation.

  6. Click Add new.

    Add new client ID for domain-wide delegation | Coveo
  7. In the Add a new client ID panel, configure your new API client.

    1. Enter the Client ID associated with your project’s service account.

      Note

      You can get your project’s client ID from the project’s service account page of the Google Cloud Console.

    2. Copy the list of comma-delimited scopes below and paste it into the OAuth scopes field.

      https://www.googleapis.com/auth/drive.readonly,
      https://www.googleapis.com/auth/userinfo.email,
      https://www.googleapis.com/auth/admin.directory.user.readonly,
      https://www.googleapis.com/auth/admin.directory.group.readonly
    3. Click Authorize. The new client ID appears at the top of the API clients list.

      Authorize client ID and scopes | Coveo